Damages from breaches are NOT as a result of the breach per se, but from how stolen data is used by all the bad actors out there. What is important in a data breach is knowledge that a breach has occurred – and building up defenses before the real attacks begin.
When reviewing the history of breaches, we have seen that it is a friendly third party or reporter that informs the company (often publicly) that significant data was breached weeks ago, leaving the company scrambling to identity potential damages and managing PR to avoid loss of face, confidence and lawsuits.
What you need is early notice that a beach occurred, and the potential data that was stolen and available on marketplaces that peddle this kind of stuff.