This IDC PeerScape discusses practices for avoiding new risks in cybersecurity incident reporting. “In all cases, risk assessment should look at the business impacts of each threat and prioritize defenses in terms of how they protect business operations and processes and customer data,” says David Weldon, adjunct research advisor, IT Executive Programs (IEP) at IDC.
IDC PeerScape Figure
Executive Summary
Peer Insights
Practice 1: Review New Incident Reporting Guidelines in Detail to Understand How Products, Services, and Reputation Could Be Impacted
Challenge
Examples
City National Bank of Florida
Jovia Financial Credit Union
Microsoft
Guidance
Practice 2: Have a Plan in Place for What Information About an Incident Can Be Immediately Disclosed Despite an Ongoing Investigation
Challenge
Examples
NeuEon
Jovia Financial Credit Union
Microsoft
Guidance
Practice 3: View Tougher Reporting Requirements as Opportunities to Better Catch Vulnerabilities and Implement Preventative Measures
Challenge
Examples
Jovia Financial Credit Union
Microsoft
VikingCloud
Guidance
Practice 4: Be Smart About What Information You Disclose, Focusing on the Impact of a Breach Rather Than Details of How It Happened
Challenge
Examples
NeuEon
Jovia Financial Credit Union
Microsoft
Guidance
Research Assistance
Download our eBook: How to Succeed Using Market Research
Learn how to effectively navigate the market research process to help guide your organization on the journey to success.
Download eBook