Sony, Target, Equifax, Facebook, Kaspersky, Iran Nuclear Plant , do these names ring a bell?
You might noticed them from the newspaper headlines (or a blog post somewhere like dark-reading, theregister). What they have in common is that there are big organisations, and all have been breached at one point in their business lifetime. The question is not whether you are going to get breached, it is matter of when? and the question to ask yourself, is do you have enough resilient controls to make your business sustain these attacks and continue serve your customers or the public?
If the reality hasn’t sunk in yet, I think it is the right time to review your Incident Response Plans and your infrastructure and processes resilience (and dont forget your PEOPLE, their resilience matters the most).
In preparation to build the resilience needed to respond to attack, it is better to start at the grassroots level with the following questions:
- Why most organisations are not prepared to respond to security attacks?
- What is the reasonable resilience look like from three dimensional of Technology, People and process (TPP)
On the next post, I will expand these two questions, for now let’s leave it here