Businesses are required to constantly study the changes that take place in their external and internal environment and adapt to them. At the same time, organizations face the risks of the cyber space. These risks are constantly increasing, evolving and/or transforming, and businesses will have to deal with them directly and effectively in order to protect their data, their customers and their reputation. To successfully address these risks, a comprehensive risk assessment and a comprehensive cyber security plan are primarily needed.