It is now commonplace to state that there are only two kinds of companies: those that have been the target of a cyberattack and those that will be. Another way to think about this statement is that regardless of how good an organization’s cyber defenses may be, cyber breaches—whether caused by an external actor, insider threat, or otherwise—are almost certain to occur. From this perspective, it is imperative not only that organizations have world class defenses, but that they also have equally mature incident response plans to mitigate the effects of any breach.
Recent events underscore the importance of preparation in mitigating a cybersecurity incident. For example, when shipping firm Maersk suffered an attack during the major NotPetya malware events, the company contained the attack within approximately one day and restored normal operations in ten days—drastically limiting the overall cost of the incident to Maersk. On the other hand, other recent incidents, such as the data breach Equifax suffered, have demonstrated the negative outcomes from not having a thorough plan in place.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
LexisNexis® and Bloomberg Law are third party online distributors of the broad collection of current and archived versions of ALM's legal news publications. LexisNexis® and Bloomberg Law customers are able to access and use ALM's content, including content from the National Law Journal, The American Lawyer, Legaltech News, The New York Law Journal, and Corporate Counsel, as well as other sources of legal information.
For questions call 1-877-256-2472 or contact us at [email protected]
