Breached? The Need for Speed in the Golden Hour

  • By Tony Rowan, Chief Security Consultant, SentinelOne

Just like a goalkeeper in a football match, it’s important for organisations to realise that they can’t stop everything that tries to bypass their cyber security defences.

As attackers become stealthier, even organisations with multiple layers of security can be victims of a cyber breach. What happens in the ‘golden hour’; the critical first hour after something does slip through the net from a technical and organisational perspective?

Immediate response during the golden hour

As recent breaches have shown, even the biggest companies with more significant budgets to invest in cyber security defences aren’t able to block everything that attempts to access their network. This, alongside the impending General Data Protection Regulation (GDPR) – which states that any breach must be reported within 72 hours – emphasises the need to have the proper mechanisms in place to detect a data breach as quickly as possible. This allows an organisation to react quickly and implement the correct procedures to mitigate the severity of the breach.