Your organization is going to be attacked/breached by cyber attackers – a recent Fireeye paper put the percentage at 97% – see Cybersecurity’s Maginot Line: A Real-world Assessment of the Defense-in-Depth Model. The critical effort for your organization is to prepare ahead of time so that you can minimize the damage, get back to an operating capability quickly, and learn from each incident. Resilience is the ability to take a punch and get back up again and again. Highly recommended for today’s threat environment.
This effort is a cross organizational one, and needs to be led by the Board and the C-Suite to insure that the strategy is sound, and that all aspects of the organization are working toward building and maintaining a security aware environment. Proper preparation, prioritization, and exercises will help develop a smoothly deployed incident response capability that includes your internal resources and external partners needed to mitigate and recover from the attack.