Despite the growing number of high profile data breaches and the anxiety
they’re causing organizations, too much information security spending still
focuses on the prevention of attacks, while not enough has been done to
improve (or simply create) information monitoring and response
capabilities