If and when you are attacked, do you have a response plan in place? Where does an IT leader begin? Here are a few questions to get started:
Having an incident response plan is a necessity. Ransomware typically comes through the end user, but can quickly make its way to the core of your business. We have seen attackers access shared storage, and delete or manipulate data before holding it for ransom. This is to disrupt the integrity of the data and potentially cripple the business, even if ransom is paid. At times, even when ransom is paid, cyber criminals do not provide the decryption key.
To avoid the crippling effect of ransomware, your incident response plan should have these basic elements:
To protect against top threats like ransomware it is well worth the time to evaluate your infrastructure and determine your level of risk, protect your data (whether on the network, on premises or in the cloud), actively implement the right tools, and educate your end users.
Programs like Presidio Next Generation Risk Management address all areas of infrastructure and integrate assessments, governance, compliance, and architecture. Companies can measure their risks and vulnerabilities across the enterprise and view them in a comprehensive dashboard that enables immediate response.