In a world where the impact of cyber incidents mirrors that of an environmental  'disaster' by removing your ability to use your IT to run your business, it is clearly a good idea to build cyber resilience into your business continuity planning. This includes having backups,  an ability to quickly set up and get alternative IT infrastructure running with a recent set of clean data on it. But it goes beyond that, what about routing users to the recovery environment,  making sure customers and regulators are kept informed and having a 'cyber breach' communication plan in place. There is more to resilience than simply getting your technology back up and running.