The 1-10-60 Rules in Cybersecurity


Has anyone heard of this rule or is aware of this rule?


A cybersecurity company from the US established this "1-10-60 rule” as a benchmark for the average speed needed to defeat hackers and stop the breach: 1 minute to detect, 10 to investigate and 60 minutes to remediate.


How many organizations can claimed to be able to do this? We are not surprised if the response is zero. Nil.