Play it on your favorite podcast platform
Episode notes
Recent IDC findings show only 1 in 4 organizations are ready to adequately prevent and respond to a disruptive event1. Whether that’s a natural disaster destroying servers and infrastructure, a mouse chewing through the wires or a ransomware attack, companies need to be able to anticipate, protect, withstand and recover quickly.
No matter the industry, every company needs a comprehensive, strong cyber resiliency strategy. But where does one start? How do businesses remove the siloes that exist between departments and align its leaders?
Tune in as we explore the history of cyber resilience and share their insight on how companies can best plan for the next ‘cybergeddon.’
Featured experts
- Gary Meshell, Worldwide Leader Global Partner Security Initiative, AWS
- Flick March, Global Vice President, Security & Resilience, Kyndryl
What you will hear
"…all of this starts with the board and the CEO. And I think for too long resiliency and security has been the business of technologists. It's really the accountability of the board and the CEO. The other thing that we talked through over and over again, is readiness, and preparedness. If you don't test your plan, and you don't run that plan at least three to four times a year, you have no guarantee that you're ready for your worst day.”
– Gary
“…you have to take a different paradigm, a different paradigm approach. It's not preservation of systems, apps and data, that's an end, it's an end to the means. It's preservation of human safety, it's preservation of your stock price, it's preservation of your brand. And frankly, its preservation of the customers you serve.”
– Gary
“The time to see if your plan works is not when the bad guys are in. The time to make sure your plan works is beforehand. And if you are not doing readiness and response exercises – not just at the technical level, but at the business level – I think that's a real gating issue. We've got to drive security from the top down, you cannot drive it from the CISO up. The CISO is viewed sometimes as somebody that sits in a dark room behind a screen wearing a hoodie. That's not where security starts. Security starts with the board and the CEO and Pinstripe and white shirts. Until we get that culture of accountability from the top down these problems are just going to continue to hinder the industry.”
– Gary
