Cybersecurity Incident Response Plans Still Lacking, IBM/Ponemon Study Finds | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Cybersecurity Incident Response Plans Still Lacking, IBM/Ponemon Study Finds

March 15, 2018
by Rajiv Leventhal
| Reprints

Nearly eight in 10 (77) percent of respondents in a recent survey from IBM and the Ponemon Institute admitted that they do not have a formal cybersecurity incident response plan applied consistently across their organization.

Nearly half of the 2,800 respondents reported that their incident response plan is either informal/ad hoc or completely non-existent. Conducted by the Ponemon Institute and sponsored by IBM Resilient, “The 2018 Cyber Resilient Organization” is the third annual benchmark study on cyber resilience—an organization’s ability to maintain its core purpose and integrity in the face of cyberattacks. The global survey features insight from security and IT professionals from around the world, and in many industries, with the healthcare sector representing 17 percent of all respondents.

Despite this lack of formal planning, 72 percent of organizations reported feeling more “cyber resilient” today than they were last year. Highly-resilient organizations (61 percent) attribute their confidence to their ability to hire skilled personnel—but organizations need both technology and people to be cyber resilient. In fact, 60 percent of respondents consider a lack of investment in AI and machine learning as the biggest barrier to cyber resilience.

This confidence may be misplaced, however, according to the researchers. The analysis revealed that 57 percent of respondents said the time to resolve an incident has increased, while 65 percent reported the severity of the attacks has increased. These areas represent some of the key factors impacting overall cyber resiliency. These problems are further compounded by just 31 percent of those surveyed having an adequate cyber resilience budget in place and difficulty retaining and hiring IT security professionals (77 percent).

The lack of a consistent cybersecurity incident response plan is a persistent trend each year despite a key finding from IBM’s 2017 Cost of a Data Breach Study. The cost of a data breach was nearly $1 million lower on average when organizations were able to contain the breach in less than thirty days— highlighting the value and importance of having a strong CSIRP.

Other takeaways from the study include:

  • Staffing for cyber resilience-related activities is inadequate
  • The second-biggest barrier to Cyber Resilience was having insufficient skilled personnel dedicated to cyber security.
  • 29 percent of respondents reported having ideal staffing to achieve cyber resilience.
  • 50 percent say their organization’s current CISO or security leader has been in place for three years or less. Twenty-three percent report they do not currently have a CISO or security leader.

“Organizations may be feeling more cyber resilient today, and the biggest reason why was hiring skilled personnel,” Ted Julian, vice president of product management and co-founder, IBM Resilient. “Having the right staff in place is critical but arming them with the most modern tools to augment their work is equally as important. A response plan that orchestrates human intelligence with machine intelligence is the only way security teams are going to get ahead of the threat and improve overall Cyber Resilience.”

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Mass. General, Eastern Maine Healthcare Systems Form Clinical Affiliation

Massachusetts General Hospital will form a clinical affiliation with Eastern Maine Healthcare Systems, in which the two provider organizations will collaborate on areas as telemedicine, research, and protocols for providing care, according to a report in the Boston Globe.

Humanitarian Data Exchange Wins Health Data Liberator Award

Sarah Telford and Ahmadou Dicko were named the winners of this year’s Health Data Liberator award at the Health Datapalooza conference in Washington, D.C., for their work on the Humanitarian Data Exchange.

Survey: Optimism for Health IT Startups in 2018, Skepticism for Amazon Healthcare Partnership

Despite all the buzz about new entrants disrupting healthcare, the majority of healthcare stakeholders are dubious about the impact of the Amazon/Berkshire Hathaway/JP Morgan healthcare partnership and believe the effort will face substantial challenges, according to a survey by venture capital firm Venrock.

NIH Awards $10M to Alabama-based Newborn Genome Sequencing Project

The National Institutes of Health (NIH) has awarded a four-year, $10 million grant to HudsonAlpha Institute for Biotechnology, a Huntsville, Ala.-based genomics and genetics research institute, in collaboration with the University of Alabama at Birmingham (UAB) School of Medicine and the University of Mississippi Medical Center, to investigate how genome sequencing can help with the diagnosis and care of babies with birth defects and genetic disorders.

Senate Committee Advances Opioid Bill that Includes Telehealth Provisions

The Senate Health, Education, Labor and Pensions (HELP) Committee voted Tuesday to advance a bipartisan opioid bill, called the Opioid Crisis Response Act of 2018, that includes provisions promoting the use of telemedicine in substance abuse treatment.

Florida Insurer Establishes Digital Health and Wellbeing Program for Members

Florida Blue, a health insurer based in Jacksonville, has announced a partnership with Welltok. The goal of the collaboration will be to provide Florida Blue members with access to a digital health and wellbeing program designed to help them become and stay healthy.