Less than Half of Organisations Conduct Regular Cyber Incident Response Exercises

The threat of cyber incidents looms large over all organisations. Responding to these incidents swiftly and effectively can mean the difference between a minor disruption and a catastrophe.

We ran a poll on LinkedIn asking: “How frequently does your organisation conduct cyber incident response exercises or drills?”

The results provided valuable insights into the current state of cyber resilience practices, with 52% of organisations admitting that they don’t perform regular cyber incident response exercises.

A snapshot of cyber resilience

  • Regularly (once a quarter) – 48%
    Nearly half of the respondents emphasised the importance of conducting cyber incident response exercises every quarter. This proactive approach demonstrates their commitment to maintaining a high level of preparedness.
  • Occasionally (twice a year) – 15%
    A smaller percentage, but still significant, said that they conduct drills twice a year. This group recognises the need to keep their response teams sharp and ready.
  • Rarely (less than once a year) – 21%
    A sizeable number of organisations admitted to conducting drills less than once a year. This suggests that they may not be refining their incident response capabilities appropriately.
  • Never – 16%
    Surprisingly, 16% of respondents reported that they have never conducted a cyber incident response drill. This is a concern, as it means these organisations are unlikely to be able to respond to a cyber incident effectively.

The importance of regular cyber incident response exercises

There are many benefits to conducting regular cyber incident response exercises:

  • Proactive preparedness: Regular cyber incident response exercises ensure that response teams are well prepared and familiar with protocols, enabling them to react quickly in the event of an incident.
  • Identifying gaps: Exercises uncover gaps in the incident response plan, allowing organisations to refine their strategies and procedures to address weaknesses.
  • Team cohesion: Practice fosters teamwork and collaboration among response teams, leading to smoother and more effective incident resolution.
  • Adapting to evolving threats: With cyber threats constantly evolving, regular drills help organisations stay ahead of emerging tactics and techniques.

Taking action: enhancing cyber resilience

For organisations looking to bolster their cyber resilience, it’s imperative to take the following steps:

  • Increase the frequency of cyber incident response exercises: Conduct cyber incident response exercises more often to ensure teams remain well prepared for any scenario.
  • Evaluate and refine plans: Regularly review and update your incident response plans to incorporate lessons learned from exercises and address any identified gaps.
  • Invest in training and education: Provide ongoing training and education for response teams to keep them up to date with the threat landscape and latest response techniques.
  • Perform simulation exercises: Conduct realistic simulation exercises that mimic potential cyber incidents to test your response capabilities.

Cyber Incident Response Tabletop Exercises

Our Cyber Incident Response Tabletop Exercises  provides your organisation with an experienced, independent CIR team, who will assess your current CIR capabilities in line with industry-recognised good practice.

They will highlight any deficiencies, recommend improvements and ensure that everyone knows what to do in the event of a cyber security incident.

This is a bespoke service, which is tailored for your organisation. We understand that no two organisations are the same and our consultancy team will work with you to ensure that these exercises address the risks that your organisation faces.

Get in touch with our team today to find out how you can get started.

Get started