The response comes after HMG’s Cyber Security Breaches Survey 2016 revealed that 65% of major UK businesses experienced at least one cyber security breach in the last year, and a quarter of large firms experienced cyber security breaches on a monthly basis.
The survey findings reveal that, although cyber security is a high priority for large UK organisations, only 29% of UK businesses have documented cyber security policies and just 10% have formal incident management processes in place.
Alan Calder, founder and chief executive officer at IT Governance, said: “Ongoing staff training is a key element for the successful management of a cyber security incident. In addition, organisations need to have a formal incident management process in place and undertake rehearsals as part of a security incident response plan.”
IT Governance’s Cyber Security Incident Response consultancy service helps organisations develop the resilience to protect against, remediate and recover from a wide range of cyber incidents, and is based on best-practice frameworks developed by CREST, as well as ISO 27001 and ISO/IEC 27035 (the international standard for cyber incident response).
An ISO 27001-aligned ISMS helps organisations coordinate all security efforts to protect an organisation’s data (both electronic and physical) in a coherent, consistent and cost-effective manner.
Read more about cyber incident reponse management and ISO 27001 via the IT Governance website. To find out how IT Governance can help organisations implement an ISO 27001-compliance information security management system, email [email protected] or contact the consultancy team directly on +44 (0)845 070 1750.
__________________________________