Senior Cybersecurity Consultant
Cyber Security in Agile Cloud
The best practice for Cyber Security in the Agile Cloud is through Cyber Resilience, an evolving perspective that is rapidly gaining recognition. The concept essentially brings the areas of information security, business continuity and organisational resilience together.
Entities with potential need of Cyber Resilience abilities include, but is not limited to; IT systems, critical infrastructure, business processes, organisations, societies and nation-states. Adverse cyber events are those that negatively impact the availability, integrity or confidentiality of networked IT systems and associated information and services. These events may be intentional (e.g. hacker attack) or unintentional (e.g. failed software update) and caused by humans or nature or a combination thereof.
The objective of Cyber Resilience is to maintain the entity´s ability to deliver the intended outcome continuously at all times. This means even when regular delivery mechanisms have failed, such as during a crisis and after a security breach. The concept also includes the ability to restore regular delivery mechanisms after such events as well as the ability to continuously change or modify these delivery mechanisms if needed in the face of new risks.
This session will provide a strategy for Cyber Resilience to focus on the preventative, detective, and reactive controls in an information technology environment to assess gaps and drive enhancements to the overall security posture of the entity.