Cyber Resilience Technical Resources

Building Cyber Resilience for when the inevitable occurs

No organisation is safe from an attack. What’s changed is that companies and governments must face the reality that it’s not if they’ll get hacked, but when.

Developing cyber resilience is the only way to build effective defences to protect your organisation from the inevitable.

Where do you start on the road to cyber resilience?

1. Use Recognised Frameworks and Standards

By combining the commonly accepted standards for cyber security, ISO 27001 and business continuity, ISO 22301, organisations are able to follow a comprehensive approach to being resilient to cyber attacks.

• Cyber resilience core standards kit
• Cyber resilience incident response kit

Recommended reading:

• Build a Security Culture
• CyberWar, CyberTerror, CyberCrime and CyberActivism, Second Edition

2. Conduct a Cyber Security Risk Assessment

Regular vulnerability assessments and penetration tests are a good measure of assessing the robustness of your networks, systems and applications. These tests require a trained eye and instinctive judgment in order to provide the best advice regarding the test outcomes.

Useful Risk Assessment Software:

To help you conduct an information security risk assessment faster, the vsRisk cyber security risk assessment tool will speed up the process by up to 70%.

3. Implement Controls

There are a range of controls to apply, however one of the important controls is data encryption:

Data encryption resources:

• Boldon James Classifier

4. Testing and Incident Response Planning

It is essential to conduct an incident response plan, followed by regular testing to validate whether your programmes are effective.

Other important resources can be found on our cyber resilience training, cyber resilience publishing and cyber resilience consultancy pages.