Information security has been one of the most important decisions in the current market scenario. But when we look at the statistics about implementing information security measures in the corporate world, we find out that most of the organisations are not yet practising the measures that they can. therefore, we can take a look at these statistics and analyse the current ground that all the organisations in the global market are as of now. But let us not focus on these statistics as of now and take a look at the gaps that every security team is required to fill before approaching 2021 with their services. THE GAPS THAT ARE NEEDED TO BE ADDRESSED As we all know that the pandemic situation has brought upon the global market, a situation where every company is working on a remote platform. the new normal has created a number of loose ends, as far as cyber-security measures are concerned. Therefore, an information security consultant and cyber-security consultancy service providing organisations in the corporate sphere are required to analyse these loose ends and make their services resilient for their clients. Even though it is not entirely dependent on the professional consultants, it is important for them to understand these gaps so that they can extend this information to the organisations were hiring them for making them resilient towards cyber-crimes. • The first gap that all the consultants and security teams should consider, is making the devices of all the employees, secure against all the types of cyber threats. In a recently published article, it has been stated that 64% Of the companies around the world have witnessed web-based cyber-attack. Therefore, on the remote platform where most of the employees are working on their personal devices, they are also being exposed to cyber attackers who are trying to attempt network infiltration on a perpetual basis. Focusing on protecting the devices used by the employees will go in a long way for protecting a business entity from a cyber-attack. • The next gap that needs to be filled by all the consultants, including the business continuity consulting firms, is the lack of an efficient plan to detect a cyber-attack within the Nick of time. A survey states that most of the organisations in the global market, take up to six months to detect the cyber-attack that they are being a victim to. Therefore, a specific plan to identify the cyber-attack can only be suggested by the information security consultant that a company has hired for themselves. • One of the most important gaps that every company out there, including the consultants are required to understand is that now is the time to start focusing on building a strong network infrastructure. If we take the recently published articles as the premise of this discussion, the average price drop in the shares of the companies that are being exposed to a cyber threat is 7.67%. Therefore, we can safely say that every organisation should focus on coming up with better cyber-security measures because the measures that they will incorporate, will help them in building and maintaining the reputation they have for themselves in the global market. • Even though it is not entirely a gap that needs to be filled, but it is important to focus on providing adequate training to the employees for analysing and tackling the phishing attacks better getting out of hand. In other words, it is important that every individual in all the companies among the assorted industries, should have adequate information about all the vulnerabilities in the current market scenario. this will help them in building a stable structure for themselves while interacting on the internet. HOW CAN AN ORGANISATION APPROACH? Now, the only question that remains, is about the trajectory that a business entity can take towards fulfilling the above-mentioned gaps. Everybody in the corporate sphere, is aware of the fact that whenever it comes to the cyber-security measures, the professionals in this sector become the pillar on which all the expectations are relying. this is the only notion that needs to be changed because, if the companies are not self-aware about their role in this process, the help back is to be extended by the consultants, will not fulfil the requirement at all. So, the foremost step that every organisation can take is realising the fact that they have to become resilient for that killing the cyber threats, but most importantly, they need to be attentive enough to identify the early signals of cyber threat. If not that, they should be able to assess the cyber threat at the very moment that it is initiated. If this step is incorporated, it will become difficult for the cyber-attackers to target even the small-scale organisations in the corporate market and infiltrate the network infrastructure.