Effective incident response is key to managing and recovering from cyber security breaches


Cyber security consultancy firm IT Governance has urged companies to implement effective cyber security policies, formal incident management processes and ongoing staff training to avoid harmful cyber security breaches.
The response comes after HMG’s Cyber Security Breaches Survey 2016 revealed that 65% of major UK businesses experienced at least one cyber security breach in the last year, and a quarter of large firms experienced cyber security breaches on a monthly basis.
The survey findings reveal that, although cyber security is a high priority for large UK organisations, only 29% of UK businesses have documented cyber security policies and just 10% have formal incident management processes in place.
Alan Calder, founder and chief executive officer at IT Governance, said: “Ongoing staff training is a key element for the successful management of a cyber security incident. In addition, organisations need to have a formal incident management process in place and undertake rehearsals as part of a security incident response plan.”
IT Governance’s Cyber Security Incident Response consultancy service helps organisations develop the resilience to protect against, remediate and recover from a wide range of cyber incidents, and is based on best-practice frameworks developed by CREST, as well as ISO 27001 and ISO/IEC 27035 (the international standard for cyber incident response).
An ISO 27001-aligned ISMS helps organisations coordinate all security efforts to protect an organisation’s data (both electronic and physical) in a coherent, consistent and cost-effective manner.
Read more about cyber incident reponse management and ISO 27001 via the IT Governance website. To find out how IT Governance can help organisations implement an ISO 27001-compliance information security management system, email servicecentre@itgovernance.co.uk or contact the consultancy team directly on +44 (0)845 070 1750.
This website uses cookies. View our cookie policy