In this globalised and digitised era where practically anything can connect to a network, no company is completely safeguarded against attacks. The “always connected” way of life where the limits between our private and professional lives are blurred, only adds complexity to the situation. Also, our daily business activity is based on technologies like mobility, IoT, cloud, virtualisation, artificial intelligence, etc., which forces us to make a bigger effort to protect assets, including customer and vendor data, oftentimes in an unknown and complex environment.