In a world where the impact of cyber incidents mirrors that of an environmental 'disaster' by removing your ability to use your IT to run your business, it is clearly a good idea to build cyber resilience into your business continuity planning. This includes having backups, an ability to quickly set up and get alternative IT infrastructure running with a recent set of clean data on it. But it goes beyond that, what about routing users to the recovery environment, making sure customers and regulators are kept informed and having a 'cyber breach' communication plan in place. There is more to resilience than simply getting your technology back up and running.
Get past this mental barrier that cyber-attacks can be fixed in the server room; they can’t. It takes a whole business to plan ahead, practice for and react to a cyber issue