E26 - Cyber Resilience

In this episode, Milou and Brian delve into the concept of cyber resiliency, exploring its definition, importance, and the various components that contribute to a robust cyber resilience program. They discuss the nuances of cyber recovery compared to traditional disaster recovery, the significance of incident response planning, and the role of cyber insurance in mitigating risks. The conversation emphasizes the need for organizations to consider the maturity of their cyber resilience plans, ensuring continuous improvement and...

In this episode, Milou and Brian delve into the concept of cyber resiliency, exploring its definition, importance, and the various components that contribute to a robust cyber resilience program. They discuss the nuances of cyber recovery compared to traditional disaster recovery, the significance of incident response planning, and the role of cyber insurance in mitigating risks. The conversation emphasizes the need for organizations to consider the maturity of their cyber resilience plans, ensuring continuous improvement and adaptation to the ever-evolving cybersecurity landscape.

Further reading:
- In retrospect: Normal Accidents: https://www.nature.com/articles/477404a
- NIST Cybersecurity Framework: https://www.nist.gov/cyberframework

Chapters
00:00 Introduction to Cyber Resiliency
03:14 Understanding Cyber Resilience
08:39 Cyber Resilience vs. Disaster Recovery
14:10 Building a Cyber Resiliency Program
19:47 The Role of Cyber Insurance
23:51 Testing with Tabletop Exercises
26:49 Measuring Maturity of Cyber Resilience
31:13 Outro