Cybersecurity teams continue to emphasize intrusion prevention over incident response, despite US government action.