I'm preparing a business case, and I can not find a reliable source about the likelihood that an organisation will suffer a security breach in a year. I know this is way too general and complicated. I know I should rely on an assessment and quantitative analysis, but I'm in a hurry and need an average number, a reference.
VMWARE and other studies point to values that go from 50% to 70%, but I think they are pretty biased. I would greatly appreciate any help.
Luis. Security Engineer. IT Manager.