Plan for the worst in case something really bad happens to an organization.

Be prepared for immediate response

Stephen Perkins

Anything can change in the blink of an eye for businesses, so being prepared with a disaster recovery and incident response plan is key no matter the size or structure of the organization. Anton Chuvakin, a research director at Gartner's IT1 Security and Risk Management group, wrote on the company's website that plans can be useless if something unexpected pops up, but planning for anything that may come along can be golden for organizations looking to avert risks and keep their business up and running.

"Incident response planning is something even ostriches with their heads in the sand must do: if you make a concerted effort to avoid security monitoring (in order to avoid detecting an incident and thus incurring extra work), an incident will likely come your way anyway," he said. "After all, doesn't [a recent breach report by Verizon] say that most incidents are detected by third parties? Therefore, you need to plan on how you will respond to an incident that happened a year ago."

Chuvakin said incident response planning is an ongoing process that must be kept up and tested. It is no longer appropriate to simply adopt online data backup and hope for the best, companies must be sure they are all-in on the security and planning front to keep their business safe in a worse-case-scenario situation.

The Wall Street Journal said preparing for the worst can help minimize the risk in case of any type of disaster, whether it be physical or digital. Reviewing what insurance policies are in place, figuring out what will be done in case the worst happens and using data backup for all important information are musts for organizations that want to stay afloat after a breach or disaster occurs.

"Make backup copies of all critical records, such as accounting and employee data, customer lists, production formulas and inventory," the news source said. "Keep that information in a separate location at least fifty miles away, or subscribe to a (sic) online data backup service provider."

Categories: Data Management