IBM announced the results of a global study exploring the readiness of organizations to respond to any cyber attack. The study by the Ponemon Institute on behalf of IBM found that the vast majority of the organizations surveyed were still unwilling to respond correctly to cyber security incidents with 77% of respondents saying they had no plan to respond to cyber security incidents.
Studies show that companies that can respond quickly and effectively to contain an electronic attack within 30 days provide an average of more than $ 1 million of the total cost of data breaches. About 54% of the organizations surveyed have an existing plan but do not regularly test their plans, which may make them less willing to manage operations that must occur as a result of the attack effectively.
“Failing to plan is a plan to fail when it comes to responding to a cybersecurity incident. These plans need to be stress tested regularly and need full support from the board to invest in the necessary people, processes and technologies to sustain such a program,” said Ted Julian, Vice President of Product Management and Co-Founder, IBM Resilient. “When proper planning is paired with investments in automation, we see companies able to save millions of dollars during a breach.”
Other takeaways from the study include :
- Less than a quarter of the organizations surveyed reported that their organization was significantly using automation technologies, such as identity management and authentication, incident response platforms, and information management tools. of Security (SIEM), in their response process.
- Only 30% of respondents indicated that staffing for cybersecurity was sufficient to achieve a high level of cyber resilience.
- 62% of the organizations surveyed said that it is essential, if not very important, to align the roles of confidentiality and cybersecurity for the achievement of cyber resilience within their organization.
Source : IBM / Ponenom Institute