Cyber Leaders, managers, engineers, and analysts that have been involved in a cyber event such as a breach, or ransomware: Approximately how long did the forensic analysis team hold your production environment before releasing the environment for mitigation and restoration activities?

Less than 1 week25%

1 to 2 weeks31%

2 to 4 weeks31%

1 month to 3 months6%

3+ months6%

16 PARTICIPANTS
541 viewscircle icon1 Comment
Sort by:
Information Security Managera year ago

I’ve been involved in multiple events in my career and it really comes down to the situation. Some have been short (hours) and in one case the system was never brought back because it was determined to be inherently insecure and had to be replaced with a different environment.

Lightbulb on1

Content you might like

In 2021, did your company's IT budget:

Increase79%

Decrease20%

What are the fundamental leadership capabilities that are needed for an era of exponential technology and AI innovation?

Read More Comments

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

Read More Comments

What’s the biggest hype vs. reality gap in AI pentesting today?

Coverage—AI claims full scan, but misses deep flaws42%

Speed—AI is fast but error-prone62%

Creativity—AI scripts can’t improvise20%

Integration—vendor tools don’t plug into DevSecOps22%

View Results

Which GenAI use cases provide you with the most value in Cybersecurity Operations?

Cyber Leaders, managers, engineers, and analysts that have been involved in a cyber event such as a breach, or ransomware: Approximately how long did the forensic analysis team hold your production environment before releasing the environment for mitigation and restoration activities? | Gartner Peer Community