"Step 1: Identify what services are really critical
Start by asking, what are the most business-critical services that are accessible via the Internet? What are the services in which the Internet really has to work? Some organizations, like a cement factory, can be offline for the better part of a day. But an online bank has to have the Internet functioning at all times.
Understand that it’s impossible to protect everything, so the company has to prioritize. Decide on what are the most critical services needed to maintain the organization’s mission. The goal is to minimize the anxiety of what will or won’t be restored. Start by coming to an agreement internally on the critical services that will be restored during an attack and develop a plan to keep those services up and running."
No comments:
Post a Comment