Very few organisations have formal cyber security incident management processes in place.
Although the legal sector is leading the way with around 2 in 5 having an incident management process in place, this continues to be the area in the Government’s 10 Steps to Cyber Security guidance where organisations are least likely to have taken action.
Cyber security is not limited to theft or intercepting information; it is about recovering from a cyber-attack, protecting your IT infrastructure’s integrity and taking additional preventative measures to ensure that it does not happen again.
To minimise the impact of any cyber-attack, businesses should create an Incident Response (IR) plan. IR plans are designed to manage cyber security incidents in order to speed up recovery, reduce damage and costs, and enhance the confidence of stakeholders. Plans must be sufficiently detailed to be useful and flexible enough to cope with a myriad of potential incidents.