How many times have you heard the phrase, “It’s not if, but when”? The saying can easily be applied to the inevitable failure of a company’s cybersecurity defenses, and it’s surprising how widely accepted this view is. Cybersecurity defenses are designed to identify threats and then prevent them. This strategy is imperfect, however, because there is no product on the market today that can evaluate with 100 percent accuracy whether something from the Internet—including a file, an image, or a document—is safe. So the industry standard is to accept that your cybersecurity sometimes fails, and you need to ensure that you can detect and remediate the breach as quickly as possible.