The debate about whether companies will be breached is over. It was consigned to history at the same time as industry parlance quietly shifted from ‘100% protection’ to outlining the importance of layered defenses.
Yet companies are still regularly caught unprepared. Botched breach responses that strangulate brands and puncture company value are a cyclical business occurrence, with each one now costing on average $3.9m. Once hit, no number of defensive countermeasures will soften the blow; only effective response will help. In fact, according to one estimate, forming an incident response team will save $360,000 of the cost of a breach.
So how can you help your team to respond better? Preparing for cyber crises isn’t just about writing down which steps to take in specific incidents — it’s about instilling the right mindset to respond to all incidents. Arming your people with this will protect the organization in the long term.
We set out to ask a varied set of people, many from outside cybersecurity, how companies can instill this ethos. We talked to experts in organizational psychology, communications, education and even the military, as well as a senior security leader who has been through a high-profile breach. We immersed ourselves in understanding the human element, because that is what we do.
Meet the experts
With a background at a Big 4 Consulting firm and Brunswick, Miranda has run cross team crisis scenarios for some of the largest companies on the planet.
Paul works with the world’s leading organizations to design strategy, align leaders and engage and motivate their people in the shift to digital.
Lieutenant Colonel Brian Semple OBE served in the Royal Engineers from 1966 to 1996.
Alister is the Headteacher of a junior school in Brighton, UK, and has 13 years of education experience across three large publicly funded schools.
Senior Security Leader
Anon’ is a Senior Security Leader hit by a very high-profile breach at a top ten global brand.
27 August 2020
Latest Blog posts
Patch Newsday: 14 September 2021 – Lousy Browsers and Arsey RCEs
15 September 2021
Analyzing the CVE-2021-40444 exploit
13 September 2021
Take the power back: Tool-up against a notorious global threat group with our new FIN7 series
13 September 2021
Episode 44: Rotten Apple or Privacy Nuts?
2 September 2021
Patch Newsday 10 August: Ironic exploitation and the spectre of PrintNightmare
10 August 2021
Kaseya supply chain attack: Prepare to respond with the Cyber Crisis Simulator
27 July 2021