CyBrilliance - Technology Category
Cyber resilience
These example organisations had cyber security tools deployed but were still critically damaged.
Why spend budgets on Cyber Resilience?
If the continual efforts of cyber security vendors stopped cyberattacks and resisted all attempts to breach your defences, why are you continually confronted with successful attacks?
Should cyber resilience be as profound as cyber security?
Yes.
Cyber resilience is vital for business continuity. It provides benefits beyond increasing an enterprise's cyber security posture and reduces the risk of exposure to its critical infrastructure.
Cyber resilience, when implemented effectively minimizes operational impact, helping to reduce financial loss and reputational damage. Cyber resilience increases a company’s competitive advantage through effective, efficient and rapidly responsive operations.
Advancing Cyber Resilience
While you're reading this, attackers are persistently working to breach your networks and they are using increasingly successful sophisticated methods to find a way in.
If cyber security tools on their own could stop all hacker end-game breaches and ransom threats from happening, there would never be a successful attack.
Cyber resilience ‘must haves’ for competitive advantage
- Applying adequate levels of information security proficiency and resilience affects how well an organization can continue operations with little to no downtime.
- Cyber resilience must proactively manage risks, threats and vulnerabilities to mitigate the effects on critical information and business-supporting assets.
- Cyber resilience should incorporate governance, risk management, an understanding of data ownership and incident management. Assessing these characteristics demands experience and deeper diligence than before.
- Effective cyber resilience must be an enterprise-wide risk-based strategy. A collaborative approach driven from executives to everyone [organization, partners, supply chain participants and customers].
It's not all criminal!
A number of unintentional [internal] actions can cause a computer or application to stop working. It could be as simple as a bad Microsoft patch, a system setting change or even a newly installed application.
Many rollback technologies used to return to the last 'good known state' rely heavily on the various types of backups of data. Cyber resilience should address many of the operational constraints inherent in this process (backup location, network access, storage architectures, etc.), presenting you with the difficulty to recover all your data, compromising your recovery time objective and capability to be fully operational.