Almost three-quarters (73%) of survey participants claim that their company has a playbook for incident response that directs decision-making in the event of a cybersecurity problem. The percentage increases to 90% for enterprises with more than 10,000 employees, compared to 60% for small businesses with fewer than 100 employees.
The “people problem” is just one of the findings from the 205 security and IT leaders polled in the North American CyberRisk Alliance Business Intelligence survey. About 49% of respondents gave a high rating to their organisations’ ability to respond to and recover from a crisis, while about 50% provided a moderate to low assessment.