To avoid being one the 77% of companies that IBM reports as not being properly prepared in the event of a security breach, you’ll need a plan. Specifically, you’ll need an Incident Response plan, which is a set of procedures, tools and resources geared towards recognizing, responding to and recovering from a cyber attack.