Browse Definitions :
Definition

cyber resilience

Contributor(s): Corinne Bernstein

Cyber resilience is the ability of a computing system to recover quickly should it experience adverse conditions. It requires continuous effort and touches on may aspects of information security (infosec), including disaster recovery (DR), business continuity (BC) and computer forensics.

Although not event-specific, cyber resilience is built up over time and refers to the preparations an organization makes to deal with threats and vulnerabilities, the defenses that have been developed, and the resources that are available for mitigating a security failure after the fact. Cyber resilience capabilities are essential in IT systems, critical infrastructure, business processes, organizations, societies and nation-states.

Presidential Policy Directive PPD-21, which former President Barack Obama issued in 2013 to update earlier directives, defines "resilience" as the ability to prepare for and adapt to changing conditions and withstand and recover rapidly from disruptions. Examples include developing a business continuity plan, having a backup power generator and using more durable building materials.

Cyber resilience should not be considered synonymous with recovery, but rather with the ability of an enterprise to limit the effects of security incidents and continuously deliver the intended outcome despite a system failure or cyber attack. The concept includes the ability to restore regular delivery mechanisms after such events -- as well as the ability to modify these delivery mechanisms continuously in the face of new risks. 

For strategic planning, a key element of cyber-resilience is a deep understanding of risk – which means going beyond IT planning to make limiting risk exposure an integral part of the strategy. To capitalize on the paradigm shift from cybersecurity to cyber resilience, businesses should focus their resources on the cyber risks that are likely to have the biggest impacts and hone in on the metrics that provide insight into and help predict them.

Business and government leaders should focus on resilience to avoid the catastrophic failure threatened by an all-or-nothing approach to cyber risks (i.e., preventing network entry as the only plan). Additionally, addressing resilience extends beyond information technology or information security. To ensure greater efficiency and effectiveness, technology and strategic leaders should be involved in an overall cyber resilience approach as a key part of their long-term strategy, including outlining which technologies a business will implement in the next five, 10 or more years.

This was last updated in February 2018

Continue Reading About cyber resilience

Join the conversation

1 comment

Send me notifications when other members comment.

Please create a username to comment.

How does your organization practice cyber resiliency?
Cancel

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • California Consumer Privacy Act (CCPA)

    The California Consumer Privacy Act (CCPA) is legislation in the state of California that supports an individual's right to ...

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

SearchSecurity

  • privilege creep

    Privilege creep is the gradual accumulation of access rights beyond what an individual needs to do his job. In IT, a privilege is...

  • BlueKeep (CVE-2019-0708)

    BlueKeep (CVE-2019-0708) is a vulnerability in the Remote Desktop (RDP) protocol that affects Windows 7, Windows XP, Server 2003 ...

  • endpoint detection and response (EDR)

    Endpoint detection and response (EDR) is a category of tools and technology used for protecting computer hardware devices–called ...

SearchHealthIT

SearchDisasterRecovery

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

SearchStorage

  • Hadoop as a service (HaaS)

    Hadoop as a service (HaaS), also known as Hadoop in the cloud, is a big data analytics framework that stores and analyzes data in...

  • blockchain storage

    Blockchain storage is a way of saving data in a decentralized network which utilizes the unused hard disk space of users across ...

  • disk mirroring (RAID 1)

    RAID 1 is one of the most common RAID levels and the most reliable. Data is written to two places simultaneously, so if one disk ...

Close