Instrumented Interconnecteds Intelligent

Larry Ponemon, Chairman, Ponemon Institute

Larry Ponemon, Chairman, Ponemon Institute

Dr. Larry Ponemon is the Chairman and Founder of the Ponemon Institute, a research “think tank” dedicated to advancing privacy and data protection practices. Dr. Ponemon is considered a pioneer in privacy auditing and the Responsible Information Management or RIM framework. Today, Dr. Ponemon and IBM announced the 9th annual 2014 Cost of a Data Breach Study. Here’s a snapshot of our conversation.

What would you say is the number one finding from your research?

What is interesting is that globally the average cost of a data breach grew to $3.5 million (in U.S. dollars). That’s an increase of 15 percent compared to 2013. The average cost for each lost or stolen record containing sensitive and confidential information increased nine percent to $145.  In the U.S., the average U.S. breach involved the loss or theft of 30,000 records and the average cost to the companies affected by the breach increased from $5.4 million in 2013 to $5.9 million in this year’s study.

Why is the cost of a breach going up?

Repairs, specifically to brand reputation and customer loyalty. These two areas were hit hardest by breaches. In an era when reputation and customer loyalty matter most, a single breach can take that all away before you say HeartBleed. As a result, in the aftermath of an incident, companies have no choice but to quickly channel an inordinate amount of unplanned spending to restore their brand image, bring back old customers and acquire new ones. In the global study, it was revealed that this challenge is even greater for certain industries, such as pharmaceutical, financial services and healthcare, which experienced higher customer turnover and as a result, had breach costs far exceeding that $145 figure that I mentioned earlier with respect to the global findings.

What are you finding to be the most common cause of a data breach today?

In most countries, the primary root cause of the data breach is a malicious insider or criminal attack. These are without question the most common. When we asked these companies what they believe to be the biggest security threat, the answers were malicious code and sustained probes both of which are on the rise. In fact respondents estimated that they will be dealing with an average of 17 malicious codes and 12 sustained probes each month.

Outside of technology and services what other investments can businesses make to help protect themselves?

CostofBreachUp15percentBusinesses should look to implement an incident response and crisis management plan that clearly lays out the steps they must take in the event of a breach. This year’s study found that efficient response to an incident and containment of the damage reduces the cost of breach by an average of close to $13 per record for global companies. If they have not done so already, organizations should also appoint a chief information security officer (CISO) and form a business continuity management team. Both have proven to be effective in helping to deal with the breach.

A last item to consider is insurance. I’m not talking about Progressive but rather cyber insurance. The common perception in the industry is that insurance encourages companies to slack off on security. The reality however is quite different. Cyber insurance not only helps companies manage the risk of a data breach but it also helps to improve their security posture which on its own can reduce the cost of a breach by more than $14 per record.

With the cost of breaches on the rise, it’s logical to assume companies are responding by spending more to protect themselves. Is that the case?

That’s an interesting question. After conducting interviews with close to 1,700 individuals, we found there is a significant disparity between what companies would like their security budgets to be and what they are. When asked about the level of investment in their organizations’ security strategy and mission, respondents said they would like to invest an average of $14 million over the next 12 months.  Unfortunately, this may be a tough sell in many companies. What we found is that in reality over the next 12-month period, companies anticipate they will have an average of about half that amount, or $7 million, to invest in their security strategy. What that means is that businesses today are going to have to be smarter about the solutions and services they depend on to keep them protected.

For more information about IBM Security, follow @IBMSecurity on Twitter for visit the Security Intelligence blog.

 

 

 

Bookmark and Share

Previous post

Next post

11 Comments
 
September 15, 2014
9:38 pm

This piece of writing offers clear idea in favor of thhe new viewers of blogging, that really how to do blogging and site-building.


Posted by: increase serotonin naturally
 
August 20, 2014
3:17 am

samsung chromebook 550 review


Posted by: icgsoftware.zendesk.com
 
June 13, 2014
12:10 am

I like the helpful info you provide in your articles. I will bookmark your blog and check again here
regularly. I’m quite certain I’ll learn many new stuff right here!

Good luck for the next!


Posted by: read more
 
June 13, 2014
12:07 am

The website e – How says to stir the fermenting mixture within the morning and night for four days; this may allow
the fermentation process to begin. The collection of material, wool, cotton or silk and the desired colour
determines which herb and mordant, the substance that fixes the colour towards the fabric can be used.

A second pull (equivalent to planting seed produced by a hybrid plant) will scramble the photographs, and you won’t be able to say exactly whatever you’ll get.
However most research indicates that lasting use
(1 year or more) of saw palmetto also eased urination and increased sexual function significantly.


Posted by: read more
 
June 12, 2014
6:21 am

grams to tablespoons conversion


Posted by: zendesk.com
 
June 12, 2014
4:38 am

calories burned running on treadmill


Posted by: http://support.magmic.com
 
June 12, 2014
3:57 am

実際は使用頻度にもよるけど2,3ヶ月で見えにくくなったりするから交換する
ああはなりたくないって刷り込まれてるんやろなあ
竹田恒泰・満州の矢追純一・モルモン飛鳥昭雄・ハローバイバイ関・岡田英弘・加瀬英明・渡部昇一・西尾幹二・小林よしのり・宮崎正弘。
日本 154円 石油の自給率 0.1%


Posted by: URL
 
June 8, 2014
1:11 am
June 6, 2014
11:49 pm

convert 100 grams to cups


Posted by: people.tribe.net
 
June 2, 2014
6:39 pm

Hey there would you mind letting me know which webhost you’re utilizing?
I’ve loaded your blog in 3 different web browsers
and I must say this blog loads a lot quicker then most. Can you suggest a good internet hosting provider at a reasonable
price? Thank you, I appreciate it!


Posted by: Jacklyn
 
May 29, 2014
7:25 pm

I don’t even know how I ended up here, but I thought this post was great.
I don’t know who you are but certainly you are going to a famous
blogger if you aren’t already ;) Cheers!


Posted by: wheatgrass juice
 
2 Trackbacks
 
July 18, 2014
9:50 am

[…] According to a new study_kmq.push(["trackClickOnOutboundLink","link_53c926398b592","Article link […]


Posted by: What You May Have Missed
 
May 12, 2014
9:32 am

kayak hotels monterey calif

A Smarter Planet Blog « Instrumented. Interconnected. Intelligent. A Smarter Planet Blog


Posted by: kayak hotels monterey calif
 
Post a Comment