Today i am reading through mandiant document named ‘Planning for Failure”. It contains real data that emphasizes on breaches and necessity to plan for failure to protect. For any company or security consultancy that real data can be used for business case for getting budget for security. Hence i am including that document here.
This document can also be helpful to CISO to show to management and startup guidelines to initiate building up Incident Response Center.