Forward thinking leaders, including Alan Calder, founder of IT Governance Ltd, predict that “cyber resilience will become a big thing in the next 5 years”. Cyber resilience encompasses cyber security and business resilience, and aims not only to defend against potential attacks but also to ensure an organisation’s survival following a successful attack.
Alan Calder is not alone in drawing attention to this topic. An article which appeared in Forbes in January 2014 titled “Why Cyber Security Is Not Enough: You Need Cyber Resilience” also carried the message that sooner or later a cyber attack will be successful; only when organisations accept this, they can move to the next step which is to implement a cyber resilience program.
Moreover, the European Union Agency for Network and Information Security (ENISA) signed the World Economic Forum (WEF) Principles on Cyber Resilience (PCR) on 5th November 2013 in Amsterdam. The WEF PCR was initiated by more than 100 companies and government bodies across 17 sectors and 25 countries in response to the growing threats and risks in a digitally interconnected world.
Still, the question remains open how to actually implement a cyber resilience programme. According to a poll conducted by IT Governance in January, some of the biggest challenges professionals face in terms of cyber resilience are securing the cyber perimeter and adopting appropriate information and cyber security standards.
Cyber-resilience – hear from the experts
At IT Governance, we like to not only point at the challenges, but also to propose adequate solutions. It is for this reason that we are delighted to participate again in The Future of Cyber Security Conference and Exhibition that takes place on 20 March 2014 in London where we will be able to offer advice. The event is a great platform for delegates and exhibitors alike to exchange experience on the latest issues and most pressing security threats of tomorrow.
Our very own founder and executive chairman, Alan Calder, will deliver a talk in the afternoon on “The Power of Cyber-Resilience – Managing Risk and Recovering from Breaches”. The presentation will cover:
- The number of cyber attacks targeted at organisations of all industries and sizes has escalated exponentially according to recent reports.
- Good risk-mitigation strategies can reduce cyber risk, but they cannot eliminate cyber attacks.
- Businesses need to assume a breach will happen and prepare accordingly.
- An organisation’s ability to respond to and recover from security breaches – its cyber resilience – is fundamental to its risk management strategy.
- Information security standards are an important element in building a strong, resilient information and communication infrastructure.
- This session will examine cyber risk, the pervasiveness of cyber-incidents and the key steps in building a cyber-resilience strategy.
The IT Governance team will be on hand to provide expert advice on achieving cyber-resilience as well as on cyber security training and qualifications.
If you want to learn more about cyber resilience and other topics on the agenda, register for the Future of Cyber Security Conference that takes place on 20 March 2014 in London here: www.cyber2014.psbeevents.co.uk/.