Upload File

are you prepared for a data breach?

1
$201 10K X = 2013 2014 With roughly a 22% chance that any given organization will experience a breach of at least 10,000 records within the next 24 months, organizations cannot afford to take the risk. FINANCIAL IMPLICATIONS Average lost business costs: $3.3M Average cost of detection and escalation: $417K ! Average post breach costs: $1.6M CAN YOUR ORGANIZATION RISK MINIMUM? Average cost of a breach in 2014 (US) $5.85M Average cost of a single breached record in 2014 (US) $201 BREACH CO$T $ $ $ $ $ $2.01M $ 2 M $ ? DATA BREACH? FOR A FOR A FOR A ARE YOU PREPARED DATA BREACH? FOR A FOR A FOR A ARE YOU PREPARED DATA BREACH? FOR A ARE YOU PREPARED Additionally, the average costs of breach mitigation* are up nearly *Including detection and escalation, post-breach costs, and lost business. 10% in the past year. DISCOVER Proactively protecting against data breaches – both major and minor – means minimizing the attack surface before an attacker gets near the network. ! On average, only 18% of organizations employ tools that automatically discover data desirable for exfiltration – PHI, PII, PCI, etc ! ! With 72% of attacks coming from malicious or criminal acts (42%) and human error (30%), organizations can significantly minimize their attack surface through the use of technologies that automate the detection process, stopping data breaches in their tracks. DETECT In order to further minimize the attack surface, organizations must also automate their processes with available technologies to ensure that breaches are detected within seconds, as opposed to within hours or days. 33% of organizations are still relying on manual technologies to detect data breaches. ! OOPS! 42% 30% RESPOND Once a breach occurs, a detailed response strategy is invaluable. Organizations who are prepared for breach are able to significantly diminish their attack surface, and thus diminish the damage to their organization. 75% of organizations would take hours – or more – to respond to a breach, with more than 39% taking days or weeks. Response time and response strategy are crucial, and play a major role in determining the scope and damage of a data breach. With each passing minute that a breach goes undetected, the attack surface grows exponentially larger, costing dollars, man hours, and customer trust. A strong security posture and incident response plan significantly lower the cost of a data breach, reducing the cost per lost record by $14 and $13, respectively. If an average breach is a loss of 29,087 at $201 per record, this reduces the cost of a breach by $785K Only 29% of organizations involve the CISO in the initial breach response. 29% 50% of IT staff and 75% of senior managers aren’t prepared to respond to a breach. For a 10,000 employee organization, 40 employees are required to manage the response. IT 40 X 75% 39% Average IT Salary = $80K, putting this cost at approximately $3.2M HOW CAN I PROTECT MY ORGANIZATION AGAINST A DATA BREACH? RESPOND Ensure that your organization has solid data breach mitigation and response plans in place. Leverage technology to quarantine and contain threats, which is a primary source of breaches. This greatly simplifies and accelerates the response and notification process, resulting in reduced impact. DISCOVER Automate visibility into where sensitive data is stored, and who has access to it. ! DETECT Implement next generation technologies that address the primary sources of breach: Sophisticated, email-borne targeted attacks and Malicious and/or oblivious users who have access to sensitive data. ! 1 2 Proofpoint’s complimentary data profiler tool allows you to scan your organization and determine where data lies and helps you asses how to protect this information. proofpoint.com/profiler To learn more about how you can protect your organization against a data breach, visit WWW.PROOFPOINT.COM References: 1 Ponemon Institute, 2014 Cost of Data Breach Study: Global Analysis, http://www.ponemon.org/blog/ponemon-institute-releases-2014-cost-of-data-breach-global-analysis 2 Osterman Research, Inc., Dealing with Data Breaches and Data Loss Prevention, https://www.proofpoint.com/us/id/PPWEB-WP-Osterman-Data-Breaches-and-DLP-Q115

Upload: proofpoint

Post on 15-Jan-2017

1.707 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: Are You Prepared for a Data Breach?

$20110K X =

2013 2014

With roughly a 22% chance that any given organization will experience a breach of at least 10,000 records within the next 24 months, organizations cannot afford to take the risk.

FINANCIAL IMPLICATIONS

Average lost business costs:

$3.3MAverage cost of detection

and escalation:

$417K

!

Average post breach costs:

$1.6M

CAN YOUR ORGANIZATION RISK MINIMUM?

Average cost of a breach in 2014 (US)

$5.85M

Average cost of a single breached record in 2014 (US)

$201

BR

EACH

CO

$T

$$

$$

$

$2.01M

$ 2 M$?

DATA BREACH? FOR AFOR AFOR A

ARE YOU PREPARED

DATA BREACH? FOR AFOR AFOR A

ARE YOU PREPARED

DATA BREACH? FOR A

ARE YOU PREPARED

Additionally, the average costs of breach mitigation* are up nearly

*Including detection and escalation, post-breach costs, and lost business.

10% in the past year.

DISCOVER

Proactively protecting against data breaches – both major and minor – means minimizing the attack surface before an attacker gets near the network.

!

On average, only 18% of organizations employ tools that automatically discover data desirable for exfiltration – PHI, PII, PCI, etc

!

!

With 72% of attacks coming from malicious or criminal acts (42%) and human error (30%), organizations can significantly minimize their attack surface through the use of technologies that automate the detection process, stopping data breaches in their tracks.

DETECT

In order to further minimize the attack surface, organizations must also automate their processes with available technologies to ensure that breaches are detected within seconds, as opposed to within hours or days.

33% of organizations are still relying on manual technologies to detect data breaches.

!

OOPS!

42% 30%

RESPOND

Once a breach occurs, a detailed response strategy is invaluable. Organizations who are prepared for breach are able to significantly diminish their attack surface, and thus

diminish the damage to their organization.

75% of organizations would take hours – or more – to respond to a breach, with more than 39% taking days or weeks.

Response time and response strategy are crucial, and play a major role in determining the scope and damage of a data breach. With each passing minute that a breach goes undetected, the attack surface grows exponentially larger,

costing dollars, man hours, and customer trust.

A strong security posture and incident response plan significantly lower the cost of a data breach, reducing the cost per lost record by $14 and $13, respectively. If an average breach is a loss of

29,087 at $201 per record, this reduces the cost of a breach by

$785K

Only 29% of organizations involve the CISO in the initial breach response.

29%

50% of IT staff and 75% of senior managers aren’t prepared to respond to a breach.

For a 10,000 employee organization, 40 employees are required to manage the response.

IT 40X

75% 39%

Average IT Salary = $80K, putting this cost

at approximately

$3.2M

HOW CAN I PROTECT MY ORGANIZATION AGAINST A DATA BREACH?

RESPOND

Ensure that your organization has solid data breach mitigation and response plans in place. Leverage technology to quarantine and contain threats, which is a primary source of breaches. This greatly simplifies and accelerates the response and notification process, resulting in reduced impact.

DISCOVER

Automate visibility into where sensitive data is stored, and who has access to it.!

DETECT

Implement next generation technologies that address the primary sources of breach:

Sophisticated, email-borne targeted attacks and Malicious and/or oblivious users who have access to sensitive data.

! 1

2

Proofpoint’s complimentary data profiler tool allows

you to scan your organization and determine

where data lies and helps you asses how to protect

this information.

proofpoint.com/profiler

To learn more about how you can protect your organization against a data breach, visit

WWW.PROOFPOINT.COM

References: 1 Ponemon Institute, 2014 Cost of Data Breach Study: Global Analysis, http://www.ponemon.org/blog/ponemon-institute-releases-2014-cost-of-data-breach-global-analysis 2 Osterman Research, Inc., Dealing with Data Breaches and Data Loss Prevention, https://www.proofpoint.com/us/id/PPWEB-WP-Osterman-Data-Breaches-and-DLP-Q115

https://www.proofpoint.com/profiler

Prevention of Data Breach

Data Breach Report

Data Breach Bill 2011

Dissecting a Data Breach

FOURTH ANNUAL 2017 DATA BREACH INDUSTRY FORECAST - Experian€¦ · FOURTH ANNUAL 2017 DATA BREACH INDUSTRY FORECAST By Experian® Data Breach Resolution

Data Breach Services - TransUnion Canada · Data Breach Services | Customer Handbook Data Breach Services | Customer Handbook Credit Monitoring Welcome to your Credit Monitoring Dashboard

Data Security Breach Notification Laws · Federal Information Security and Data Breach Notification Laws Congressional Research Service 1 Data Breaches A data breach occurs when there

Federal Information Security and Data Breach · PDF fileFederal Information Security and Data Breach ... Federal Information Security and Data Breach Notification Laws ... which require

California Data Breach 2013

Baromètre Data Breach

Ho w to communicate and manage your reputation with a data ... · prepared are Australian businesses for a possible data breach? How do you communicate a data breach to your customers,

Data Breach

Is Your Small Business Ready for a Data Breach? · 2015-12-16 · In the event of a data breach, are you prepared to handle your customers in addition to your daily operations? Give

Privacy & Data Breach Management

Cyber breaches: are you prepared?€¦ · data breach involving personal or corporate information Outsourcing exposures Will pay damages and defence costs for a data breach arising

INDIAN CIO's ARE PREPARED FOR A DATA BREACH · 2021. 3. 1. · INDIAN CIO's ARE PREPARED FOR A DATA BREACH COVER STORY. 23 TRAINING – THE ONLY MANTRA OF SUCCESS IN CYBERSECURITY

Deconstructing Data Breach Cost

2016 Data Breach Investigations Report: Executive · PDF file2016 Data Breach Investigations Report—Executive Summary April 2016 1 2016 Data Breach Investigations Report Cybersecurity

Smau data breach v1

DATA BREACH RESOLUTION › wp-content › uploads › ... · armed with data breach preparedness plans, not everyone is prepared.1 This is unfortunate because the assumption should

Breach Prevention: The Root Cause of the Data Breach Epidemic€¦ · Breach Prevention: The Root Cause of the Data Breach Epidemic According to the 2012 Verizon Data Breach Investigations

Data Security Breach Notification Laws · PDF fileCRS Report for Congress Prepared for Members and Committees of Congress Data Security Breach Notification Laws Gina Stevens Legislative

Data Protection Law Ireland: Data Breach

2011 Data Breach Guide

The data breach files

Data Breach QuickView - Risk Based Security€¦ · Breach Breach Adobe Systems, Inc. Services Co. Ltd Data Inc. TRW Data Sony Corporation

For Discussion — Data Breach Notification and Reporting ... · For Discussion . Data Breach Notification and ... Data Breach Notification and Reporting Regulations ... in PIPEDA

DATA BREACH LITIGATION HOW TO AVOID IT AND BE BETTER PREPARED

Data Breach Reports 2015

2013 Data Breach Highlights

DATA BREACH INCIDENT RESPONSE - dpoacademy.gr · For Questions or Immediate Help With a Data Breach, Call 1.877.441.3009 DATA BREACH INCIDENT RESPONSE WORKBOOK

TNS Data Breach Infographic

Data breach preparation and response - Maxsum Consulting · That is why being prepared for a data breach is important for all organisations that handle personal information. By an

DATA BREACH RESPONSE GUIDE

HRSDC data breach emails