We have all heard the phrase ‘it’s not a case of if but when a cyber attack will happen’. So what should organizations be doing to mitigate attacks and provide a way to respond when the worse happens? This is topic I recently explored for Infosecurity Magazine which you can read here.
Essentially, as with everything in life, doing the preparation work in advance makes things easier. It might sound daunting but there are at least 11 critical elements organizations should have in place to be able to respond in the very worst case scenarios. Sounds daunting but nothing should be left to chance. What’s more, it’s an ongoing process too. CISOs and CXOs should regularly review these to see what plans and strategies are already in place with a view to mitigating any gaps.
As a senior incident response colleague mentioned, it’s about getting a head-start in cybersecurity incidents. Far too often we hear of the latest network intrusion stories, which hit organizations of all shapes and sizes which is, worryingly, often due to the lack of security awareness or planning.
Recognizing that cybersecurity incidents will occur and preparing for them with mitigation exercises will be pivotal in the remediation of a cyber threat. By implementing an effective plan and activating an efficient response in the early stages of the breach (we’re talking the first 24 hours here), will allow organizations to recover from the situation and manage the compromises, whilst causing minimal disruption. So the question is: are you prepared?