You think you’re prepared. You think you’ve done all you can to protect your organization from a cyber-threat storm. You have made cyber-security a part of your overall corporate risk strategy. You have prioritized and protected corporate assets. You have a diligent cyber-security team that monitors the networks and all that connects to them for anomalous activity from external sources and insider threats. You have planned ahead for incident response and business continuity. You even have a crisis management plan that you regularly adapt and exercise, complete with speed-dial contacts for incident response teams and law enforcement.
