It’s not a matter of How, but a matter of WHEN! Truth is, there’s no 100% security over the web. All these interconnected devices and net services will always be prone to security holes. So really, organizations are still going to get hacked!

But preparing for worst does not prepare you for the likely attacks. There will be operational impact no matter what.. but preparing lessens the impact. Preparing gets you focus on what’s the important next step for when it happens. Who to call?  Who to roll out the recovery process? What is likely a workaround? Have your organization thought about having a Incident Response Plan? What if an attack brought down your whole system? Where is your disaster recovery plan? Where is your most important data?

One trend I’m seeing recently, organizations spend too much preparing for the most sophisticated attacks, while most incidents are due to very basic cybersecurity issues — like not patching fast enough — or errors by staff. And some execs thinks that they can combat this with an hour service of putting an incident response plan or a very expensive monitoring SIEM. Honestly