IBM: Many ME organisations lack incident response plans
IBM Security today announced the results of a Middle East study exploring organisations’ preparedness in the Kingdom of Saudi Arabia (KSA) and the United Arab Emirates (UAE) when it comes withstanding and recovering from a cyberattack. The study, conducted by Ponemon Institute and sponsored by IBM Resilient, found that approximately a third of organisations are still unprepared to respond to cybersecurity incidents, with 31% of respondents indicating they do not have a cybersecurity incident response plan in place.
While studies show that companies who can respond quickly and efficiently to contain a cyberattack within 30 days save over $1 million on the total cost of a data breach on average, shortfalls in proper cybersecurity incident response planning have remained consistent over the past four years of the study. Of the organisations that do have a plan in place, almost half (49%) do not test their plans regularly, leaving them less prepared to effectively manage the complex processes and coordination that must take place in the wake of an attack.
“Responding to a cybersecurity incident in a planned and coordinated manner can be complicated and requires specialised expertise. Therefore, having a cybersecurity plan in place is no longer an option,” said Dr. Tamer Aboualy, Partner, IBM Security Services, Middle East & Africa. “Cybersecurity attacks can be damaging financially and to the reputation of businesses. Therefore, it is important that organisations deploy a cybersecurity incident response plan as it increases the likelihood of preventing incidents and reduces the time to detect, contain and respond to an attack.”
He continued, “We have seen a rise of targeted attacks in the region and globally. Advanced malware has targeted many organisations with the goal of stealing information, corrupting disks and crippling their operations. Today, it is no longer a question of being a victim of a targeted attack but how organizations will respond and remediate such threats, causing minimal impact to their operations.”
Conducted by the Ponemon Institute and sponsored by IBM Resilient, “The 2019 Cyber Resilient Organization” is the fourth annual benchmark study on Cyber Resilience – an organization’s ability to maintain its core purpose and integrity in the face of cyberattacks. The global survey features insight from more than 3,600 security and IT professionals from around the world, including the United States, Canada, United Kingdom, France, Germany, Brazil, Australia, Middle East (KSA and UAE) and Asia Pacific.