In a recent survey, Nearly Half of IT Execs interviewed stated that they don’t rethink or retool their approach to security after an attack, almost ensuring another attack in the near future. A critical step in the remediation of a security incident is determining what elements require change so that the incident won’t repeat itself. A mature IT organization will ensure that this step is never skipped: immature organizations are destined to have history repeat itself.