Security conscious exec
Making the Case for a Better Cyber Resilience Plan
Managed security service providers can offer intrusion detection, firewalls and virus/spam blocking, and help companies improve their business continuity and cyber resilience plans.
Cyber-Attack Frequency Rate
66% of respondents report at least one cyber incident in the last 12 months, and
15% had 10-plus incidents during the same period of time.
Root Cause for Attack
The top sources of cyber disruptions include phishing and social engineering (61%),
malware (45%), spear-phishing attacks (37%), denial of service (24%) and outdated software (21%).
Slow Recovery From Cyber-Attacks
Although 31% of organizations report responding to a cyber incident within one hour, it took four hours or more for 19% of organizations.
Security Champions
55% of respondents report a commitment to cyber resilience by top management.
Business Continuity Planning
75% of respondents have business continuity plans related to cyber incidents.
Bad News
19% of organizations do not validate their plans for cyber incidents. However, 49% provide outcome reports and action plans, exercises (43%) and awareness raising seminars (41%).
Team Work
42% of recent incidents were discovered by IT personnel, versus 26% that were discovered by virus notification software.
Cost of Incidents
73% of respondents report total costs for cyber incidents in the past 12 months of about $55,000 (less than 50,000 euros), but 6% report annual costs of about $550,600 (more than 500,000 euros).
Security Response
The most popular cyber resilience methods include using antivirus software and applications (72%), followed by deploying dedicated IT/information security teams (64%), using network monitoring software or applications (63%), aligning to a recognized standard, such as ISO 22301 and ISO 27001 (51%), and deploying a comprehensive business continuity management program (50%).