Readiness Check

Contacts

HomeReadiness Check

Day Zero Cyber Readiness Check

Your honest answers today prepare you for tomorrow’s threats. Take 5 minutes to evaluate your organization’s readiness before, during, and after a cyber incident. Tick all that apply.

Please enable JavaScript in your browser to complete this form.

1. Who would detect a cyber incident in your organization first? *

We don’t have detection systems
Maybe IT staff, but nothing formal
We rely on third-party tools or providers
We have basic detection tools with alerts
We have full monitoring and alerting with escalation

2. Who is responsible for taking first action in a cyber incident? *

No one is designated
Someone in IT might do it
A specific individual, but it’s unofficial
There’s a named person with partial authority
We have a trained, authorized incident leader

3. Do you have an up-to-date list of all critical systems and services? *

No list at all
An old, incomplete list
We have a list, but it isn’t tied to operations
It’s updated, but not tested in crisis
We have a maintained and tested asset list

4. If your systems went down right now, do you know how to operate manually or recover? *

We’d be completely stalled
Some teams might manage
There are informal workarounds
We have a documented fallback process
We’ve practiced manual or alternate operation modes

5. How often have you rehearsed a cyber incident response scenario? *

Never
Only after incidents
Once or twice, informally
Annually with a checklist
Quarterly or better with full simulation

6. How will decisions be made during a live incident? *

Everyone will panic
Whoever is around will decide
IT takes over, no formal roles
A lead will step up with partial clarity
We have a defined crisis command structure

7. How long can your business run if your core IT is down? *

A few hours max
One business day
2–3 days with major issues
A week with recovery plans
We can sustain for multiple weeks

8. What happens to your customer communications if your email and CRM go down? *

We’d be silent
We’d use personal phones/emails
We have emergency comms channels
There’s a failover or alternate CRM
Comms and outreach are fully resilient

9. What information do you have during an incident? *

We’ll be guessing
Logs exist, but access is unclear
We’ll try to reconstruct from fragments
Partial visibility through tools or backups
Real-time visibility of attack scope and vectors

10. How quickly can you contain and isolate an infected device or system? *

We can’t — we’d unplug everything
It depends on the system
Manual containment possible
Automated response for some threats
Immediate, surgical containment across assets

11. How much would it cost to recover your business? *

We’ve never estimated
It could bankrupt us
A rough estimate exists
There’s a financial risk scenario model
We’ve done full cost-risk impact modeling

12. Who takes public responsibility after a breach? *

We don’t know
We’d improvise
Leadership, under pressure
A designated comms and legal team
It’s in the playbook, with media training

13. How confident are you that your backups will be usable after an attack? *

We’re not sure they even work
They’re on the same systems
They’re offsite but not recent
They’re recent but untested
They’re air-gapped, tested, and trusted

14. Do you know exactly how the attackers got in? *

No idea
We suspect, but not confirmed
We might find out post-incident
We’ll rely on forensics
We can trace it via real-time threat monitoring

15. How likely is a repeat attack using the same method? *

Extremely likely
Likely — we patch reactively
We try to fix what we find
We do root cause analysis and repair
We proactively harden and simulate re-entry

16. What key weaknesses or improvements did you discover during this assessment? *

Full Name *

Company Name *

Phone Number

Email *

Message

Company

About
Services
FAQ
Readiness Check

Suite 11.01, Level 11 South Wing, Menara OBYU, 4 Jalan PJU 8/8A, Damansara Perdana, 47820 Petaling Jaya, Selangor