Here's my initial impressions from the report:
Cost per Record Breached - $42 - $199
That's quite a range, but certainly a good number to use when considering the potential costs of a breached data store versus the cost of implementing defensive/mitigating controls.
Strong Security Posture, CISO, and Incident Management Plans drive down costs
The correlation between maturity of security program, presence of c-level commitment to security (via a CISO) and good incident planing intuitively makes sense to result in lower breach costs. It's good to see this captured within the report with data points to defend.
Human Error, Malicious Attacks and IT System Glitches represent nearly equal threats for data loss
Although the report states "Malicious or criminal attacks are most often the cause of data breach globally", the numbers show the three root causes to be close to evenly distributed.
- Human factor - 35%
- System glitch - 29%
- Malicious or criminal attack - 37%
I hope to dive deeper into the report over the coming days and also compare the findings with other recent benchmarks and studies from this year.
-Michael Coates - @_mwc