Download to read offline
Uploaded byPhil Huggins FBCS CITP
Resilience is the new cyber security
The document emphasizes the inevitability of cyber attacks and the need for organizations to adopt cyber resilience strategies rather than just focusing on prevention. Key statistics illustrate the high costs and increasing frequency of breaches, highlighting the inadequacy of current security measures. It advocates for proactive preparation, situational awareness, and continuous improvement in organizational response capabilities.
More Related Content
![First Responder Course - Session 10 - Static Evidence Collection [2004]](https://cdn.slidesharecdn.com/ss_thumbnails/publiccopy-10-staticevidencecollection-130419072255-phpapp02-thumbnail.jpg?width=640&height=640&fit=bounds)
![Security Metrics [2008]](https://cdn.slidesharecdn.com/ss_thumbnails/securitymetrics-nuksg-2008-130419040455-phpapp02-thumbnail.jpg?width=640&height=640&fit=bounds)
![First Response - Session 11 - Incident Response [2004]](https://cdn.slidesharecdn.com/ss_thumbnails/publiccopy-11-incidentresponse-130419072430-phpapp01-thumbnail.jpg?width=640&height=640&fit=bounds)
![First Responder Course - Session 9 - Volatile Evidence Collection [2004]](https://cdn.slidesharecdn.com/ss_thumbnails/publiccopy-9-volatileevidencecollection-130419072103-phpapp02-thumbnail.jpg?width=640&height=640&fit=bounds)
![First Responders Course - Session 8 - Digital Evidence Collection [2004]](https://cdn.slidesharecdn.com/ss_thumbnails/publiccopy-8-digitalevidencecollection-130419071830-phpapp02-thumbnail.jpg?width=640&height=640&fit=bounds)
![First Responders Course- Session 1 - Digital and Other Evidence [2004]](https://cdn.slidesharecdn.com/ss_thumbnails/publiccopy-1-digitalandotherevidence-130419070259-phpapp01-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Resilience is the new cyber security
Resilience is the new cyber security
- 1. Resilience is thenew cyber security Phil Huggins
- 2. Stroz Friedberg 2 Leading expertson cyber defence - pragmatic, evidence-driven, strategies and tactics that work World class response to digital trouble – and advice on how to prepare for cyber attacks Discrete global advisors when it matters
- 3. Cyber attacks aregoing to happen 3 Average breach cost £2.5m Average cost per record breached £101 Time to detect a breach 206 Days Time to contain a breach 69 Days Attacks completed in minutes 60% Attacks spread to second victim in one hour 40% Malware samples unique to target 70-90% Exploited vulnerabilities older than 1 year 99.9% New vulnerabilities exploited within 2 weeks 50% Organised crime attacks using crimeware 73% Activist attacks targeting web applications 61% Chance of 1 breach every 10 years 71%
- 4. Cyber Resistance isnot enough. 4 95% of vulnerabilities patched is not enough $250m invested in cyber is not enough 1000+ cyber professionals is not enough Constant organizational change Competitive cyber job market Rapidly evolving cyber threat environment Increasingly fragile controls Failure is often silent
- 5. We need CyberResilience 5 See the attacks earlier Absorb the damage Limit the spread of the damage Controlled graceful degradation Handle delays in recovery
- 6. Preparation is key 6 Graduallybuild capability Consider key decisions before the emotion hits Develop muscle-memory
- 7. Cyber Security 7 Cyber hygienematters Organisational culture really matters Technical agility matters They are necessary but are not enough anymore
- 8. Cyber Resilience 8 Identify relevantcyber scenarios Build situational awareness Prepare for attacks Recover from attacks Learn from attacks
- 9. Prepare for attacks 9 Planfor incident response Practice crisis management Partner with experienced experts
- 10. Summary 10 Cyber attacks aregoing to happen Don’t panic Prepare
- 11. strozfriedberg.com THANK YOU Phil Huggins,Vice President phuggins@strozfriedberg.com T: +44 207 061 2299 ©2015 Stroz Friedberg. All rights reserved.