MIDWEST CYBER
SECURITY ALLIANCE
The Midwest Cyber Security Alliance (MCSA) is a nonprofit, nonpartisan collaboration of individuals, businesses, government entities, and professional firms advocating for more effective cybersecurity solutions. MCSA's mission is data privacy and security through education, specifically cyber preparedness and security awareness. The organization is a meeting place for all cybersecurity stakeholders, in every industry, to collaborate on current cyber threats as well as cyber defenses and strategies, and we help information security and privacy professionals design and implement strong and effective cyber security programs.
The Midwest Cyber Security Alliance is celebrating its 10th anniversary in May 2025!
Thank you to everyone that has served and sponsored the organization to make it a great cyber security resource for the community.
The MCSA is proud to be recognized as a of National Cybersecurity Awareness Month in October 2025. This prestigious award highlights our unwavering commitment to enhancing security of our nation’s infrastructure. By aligning our core values with this national initiative, we strive to foster a culture of cybersecurity awareness and resilience. Together, we can empower individuals and organizations to protect their digital environments and contribute to a safer, more secure future.
WHY IS CYBER SECURITY CRITICAL TO AN ORGANIZATION?
According to the 2025 IBM Security / Ponemon Institute Cost of a Data Breach Report involving 600 organizations across 16 countries & geographic regions, and 17 industries:
-
The average cost of a data breach in the US is $10.22M
-
The healthcare sector's breaches cost an average of $7.42M
-
1 in 6 breaches involved AI-driven attacks
-
86% of organizations experienced a significant or very significant disruption to business as a result of a breach, usually leading to the increase of costs of its products and services
-
1/3 of organizations are using AI and automation to help secure their environments, and they generally saw shorter times to identify and contain breaches, and cost savings of $1.9M
-
63% of ransomware victims avoided paying a ransom
-
Shadow AI in an organization increased the cost of a data breach by $670K
-
The average time to identify & contain a data breach is 241 days
-
The root cause of 51% of data breaches is malicious or criminal attacks, followed by 26% for human error, and 23% for IT failure
-
49% of organizations increased security investments after a breach
-
Taking a DevSecOps approach to software development is the factor with the most positive financial impact on reducing the cost of a data breach
-
97% of AI-related breaches lacked proper access controls
To reduce the risk of cyber incidents, successful Information Security Programs involve a multidisciplinary team that includes Executive Leadership (CEO, CFO, COO, etc.), Risk Management, General Counsels, Security Officers, Privacy Officers, Compliance Officers, Human Resources, CIOs, and relationships with external agencies. Organizations should implement strong, risk-based security and privacy controls that evolve to reflect the changing threat landscape.
FOLEY'S STATE DATA BREACH NOTIFICATION LAWS CHART
A one-size-fits-all approach to breach notification will not suffice, as most state are responding with increasingly frequent and divergent changes to their statutes, creating challenges for compliance. Organizations must make it a priority to monitor these changes to prepare for and respond to data breaches. Download Foley’s State Data Breach Notification Laws Chart for a summary of basic state notification requirements that apply to entities who “own” data.
