Cyber crime vulnerability is mostly a result of the lack of preparedness of an organization to handle the unlikely event of a data breach or any other cyber threat. A survey conducted by PwC has revealed that only 37% of organizations have a cyber incident response plan in place! Three in ten have no plan, and of these, about half of the cohort feel that they don't need to worry about cyber security at all! However, with the rise in the incidents of cyber security breach, board members of most of the organizations are treading more carefully and are setting unreasonable security goals for their information security managers. This is not an ideal approach as a robust security infrastructure cannot be achieved overnight.