The 21st century has blurred the lines of disaster. Sometimes it's difficult to tell if it's a natural disaster, cyber attack or data breach. With the ever changing landscape of data breaches and cyber threats, it can be hard to feel fully prepared.
The NIST (National Institute of Standards and Technology) recommends a 5-step framework to help you plan and prepare for disasters of any kind: Identify, Protect, Detect, Respond and Recover.
Then, you can use the Defense in Depth strategy of proactive and reactive security controls. As part of this approach you'll also want to confirm that the security and the disaster recovery teams who'll manage the response don't have conflicting goals that will make it harder to get the business back up and running.
Once you have cyber threats built into your disaster recovery plan, you can be confident that you're prepared for new and emerging cyber threats.
One of the most important and pressing problems we face today, dealing with a cyber-disaster impacts our key systems and information. A great example of this are Ransomware attacks. For many organizations, the cost and time required to recover operations can be as problematic as the breach itself. Having a proven plan to get running again is critical.