If a cyber attack occurred tomorrow, could your organization continue to function? Odds are the answer is no.
In a survey by Spy-Ops, less than 1% of organizations have planned for a cyber attack. What is even more shocking is that less than 1% has business continuity plans that address the threat of a terrorist attack. Both of these events are now foreseeable threats and as such require all organizations to create strategies to minimize these risks. Failure to prepare for these events could bring charges of negligence from all of those who are negatively impacted.
For companies in America, the issue of liability for cyber-attacks is a significant risk, said Edward Maggio of Spy-Ops.
Many business organizations are waiting for specific regulations to require action before they implement procedures and safeguards to a cyber-attack. The reality is that with so many publications like this one and other like news article, academic journals or material from a conference available to the public now puts an organization on notice that a cyber-attack is foreseeable.
Since cyber-attacks are now foreseeable acts that can cripple a business organization, the failure to mitigate an attack can rise to the level of negligence in U.S. civil courts, Maggio stated. He then went on to say: The we didn't know defense is no longer working in the realm of liability for cyber-attacks.
Resilience engineering is a relatively recent term given to a collection of activities designed to create the ability for organizations to continue to operate under extremely adverse conditions such as a cyber attack. These activities are rapidly evolving into what is sure to become industry Best Practices and some security experts believe it will soon become a regulatory requirement.
Technolytics estimates that a one day interruption of eBusiness could easily exceed $35 billion. If a cyber attack were to occur now or in the near future, it would surely send the already shaky economy into a tail-spin. This is considered Economic Warfare that is just one of the fifteen modalities of UnRestricted Warfare (URW).
Business, Government and Industry need to build resiliency into their systems and operations if we are to be secure.