Creating an effective incident response plan

Cyberattacks come in all shapes and forms.

It’s important to understand that while some attacks are a result of organized and targeted cybercrime, some are the result of one employee mistakenly clicking on a suspicious link at work and downloading malware to the company system. Therefore, businesses should understand that every person who has access to your network can cause a security incident, and they should plan accordingly.

Incident response is a core part of AT&T’s operation as a network provider. Every single day we see around 30 billion malicious scans – where attackers are probing for vulnerabilities – and 400 million spam messages on our global IP network. In fact, we block 5 billion malicious scans and 200,000 malware events that are targeted specifically to us every day.

As the number and kinds of cyberattacks continue to grow, breaches are inevitable. In 2015, 62 percent of organizations reported having security breaches. And 42 percent of these businesses said the negative impact on their business was significant. Yet 66 percent of organizations have no effective incident response plan.

Planning for a security event is crucial for effective business planning. Security incidents can translate into disrupted operations, damaged brand image, and ultimately, lost revenue.

In the past year, security incidents have caused major enterprises an average of 23 hours of down time. Even medium-sized businesses experienced an average of 14 hours of downtime. But just one or two hours with operations down can translate into millions of dollars lost for your company.

So what can business leaders do to help protect themselves from cyberthreats? That’s exactly what AT&T’s third Cybersecurity Insights, “The CEO’s Guide to Cyberbreach Response,” helps to address.

Dealing with millions of threats and seeing the volume of threat data we do gives AT&T unparalleled visibility and scale. Our latest report helps businesses define the right stakeholders and processes necessary to plan for business continuity in the event of a breach.

As security constantly evolves, businesses must keep plans relevant and effective. Plan to take the time to evaluate them frequently, and check out the AT&T Cybersecurity Insights, “The CEO’s Guide to Cyberbreach Response,” for more information.

Jason Porter Security Solutions Vice President AT&T About Jason