Building Your Cyber Incident Response Plan
Every company should have a cyber incident response plan. The question is no longer if a data loss may occur, but when. Therefore a companies should have a clear, communicated, written and practiced plan in place before any incident occurs. Small and medium sized businesses can no longer assume that they will escape the impact of data security breaches. In fact, most small and medium sized businesses have already been victims of cyber-attacks. Companies often don’t pay attention to cyber security issues until some major incident happens. More than 60% of businesses surveyed by AT&T had an IT security breach in 2015, and 42% of those organizations said that the breach had a significant negative impact on their business. Yet only 34% of organizations believe that they have an effective incident response plan.