SlideShare a Scribd company logo

SecureTech 2014: Risk, Business Continuity and Cybersecurity - A Resiliency Perspective

P
poore120

The document discusses critical infrastructure resilience and risk from the perspective of business continuity and cybersecurity. It addresses three main topics: 1) lessons learned about resilience and risk from taking a traditional business continuity approach to the next level, 2) the ongoing problem of cybersecurity and what risk and continuity professionals need to know, and 3) actions organizations can take to improve collaboration in managing risks from disruptions, including involving business continuity in cybersecurity incidents.

Technology
Related topics:
Risk-Management Business Continuity
1 of 21
Downloaded 18 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
© 2014 IBM Corporation Critical Infrastructure: Risk, Business Continuity and Cybersecurity -a Resiliency Point of View Paige Poore Director of IBM Global Business Continuity, Resiliency Services
© 2014 IBM Corporation 2 Critical Infrastructure panel at Securetech 2014 Focus: 1.Resilience and Risk –lessons learned. Take traditional business continuity to the next level. 2.Cybersecurity -the problem that won't go away. What do risk and continuity professionals need to know? 3.How ready are you?Actions you can take - collaborative actions in managing risks when disruptions occurAlign for Advantage
© 2014 IBM Corporation 3 Critical Infrastructure panel at Securetech 2014 Scanning the Horizon NewStrategic Risks Enhancing existing approaches Are you ready for what’s ahead?
© 2014 IBM Corporation 4 Critical Infrastructure panel at Securetech 2014 New business realities are changing how we approach business continuity ISO 22301 Mergers & acquisitions Changing workplace demographics Social media Expansion into new markets Elevated risk awareness Consider new risks on your horizon Integration and consolidation of operations
© 2014 IBM Corporation 5 Critical Infrastructure panel at Securetech 2014 Reputation risk is driving increased focusSource: The economics of IT risk and reputation What business continuity and IT security really mean to your organizationFindings from the 2013 Ponemon Institute study sponsored by IBM Leaders increasingly aware of economic and reputational impact of disruptions
© 2014 IBM Corporation 6 Critical Infrastructure panel at Securetech 2014 Vision Critical: Risk of Data Insecurity Angus Reid survey thru Vision Critical Sponsored by IBM Canada Soon to be published ! Angus Reid, thru Vision Critical, recently conducted a survey to evaluate Canadian(average user) awareness of IT security and availability issues. 1.50% of Canadians would likely or very likely get involved with a organization if they took extra steps to protect customer information. 2.83%+ of Canadians would likely or very likely switch organizations if they felt their personal information was not being adequately protected or if the organization experienced a major breach. Private talks with their wallets Publictalks with their votes Reputation Risk:
© 2014 IBM Corporation 7 Critical Infrastructure panel at Securetech 2014 •STRATEGIC •Risk based, prioritize, top 5-10% •Prioritize for investment tradeoff decisions •HOLISTIC, 360 degree view •Look past the silos! •SIMPLE. Consistent •Consistent, Shared Terminology •Impact based planning •ISO 22301 –use it as your Rosetta-stone •Joint testing and collaboration –it’s the simple things that can trip you up! Resilience and Risk -take the traditional business continuity approach to the next level It’s a journey…Focus on these key drivers
© 2014 IBM Corporation 8 Critical Infrastructure panel at Securetech 2014Incident occursBusiness Continuity management is about keeping the business running afterhealth and safety issues have been addressedPeople IT SitePlan3#3 Business ContinuityMaintain or resume critical business processes by enacting appropriate business continuity and / or IT Disaster Recovery Plan 1.Business Continuity Plan(Business Recovery) 2. IT Disaster Recovery Plan(Technology Recovery) #1 EmergencyResponse Priority: protect people and property; assemble key personnel (Emergency Plan #2 Crisis ManagementAssess, act and recover physical services; Communicate throughout the event1 4 2 8 Return to Business as Usual Event crisis response through return to normal – is collaboratively managed with defined declaration, communication and notification protocols
© 2014 IBM Corporation 9 Critical Infrastructure panel at Securetech 2014 9Anything that is connected to the Internet can be hacked. Everything is being connected to the Internet Cloud Based Computing Resiliency & Risk for Critical Infrastructure-TechnologyTrends Things, in the IoT, can refer to a wide variety of devices such as -heart monitoring implants, biochip transponders on farm animals, automobileswith built-in sensors, or field operation devices that assist fire-fighters in search and rescue.[3] Current market examples include smart thermostat systems and washer/dryers that utilize wififor remote monitoring. Monitoring and controlling operations of urban and rural infrastructureslike bridges, railway tracks, on-and offshore- wind-farms is a key application of the IoT. Source: https://ibm.biz/BdEqrX
© 2014 IBM Corporation 10 Critical Infrastructure panel at Securetech 2014 $8.98 Are you ready for an always-on world? The next era of business continuity:
© 2014 IBM Corporation 11 Critical Infrastructure panel at Securetech 2014 Cybersecurity –The problem that isn’t going away * >$213 Average cost per compromised record globally, per 2014 Cost of Data Breach Study
© 2014 IBM Corporation 12 Critical Infrastructure panel at Securetech 2014 Economic impact –3 key factorsNote: Graphical Views are US averages (vs. global ) Economic impact of critical infrastructure disruptions -How much it will impact you is dependent on a number of factors
© 2014 IBM Corporation 13 Critical Infrastructure panel at Securetech 2014 Looking forward –Economic Impact, Trends & Probability2006 to 2014 –Trends, Components of cost
© 2014 IBM Corporation 14 Critical Infrastructure panel at Securetech 2014 Looking forward -Economic Impact, Trends & Probability Within Next 24 Months Likelihood in next 24 months
© 2014 IBM Corporation 15 Critical Infrastructure panel at Securetech 2014 How do you measure up?
© 2014 IBM Corporation 16 Critical Infrastructure panel at Securetech 2014 Focus: 1.Resilience and Risk –lessons learned. Take traditional business continuity to the next level. 2.Cybersecurity -the problem that won't go away. What do risk and continuity professionals need to know? 3.How ready are you?Actions you can take -collaborative actions in managing risks when disruptions occur Align for Advantage
© 2014 IBM Corporation 17 Critical Infrastructure panel at Securetech 2014 Actions you can take Collaborative action in managing risks when disruptions occur
© 2014 IBM Corporation 18 Critical Infrastructure panel at Securetech 2014 Business continuity and cyber security can work in tandem to limit damage $145$136Average of $9 Because data breaches often affect thousands of records, the savings can be significant. 1. Business continuity helps reduce cost of data breach 3. However, that involvement occurs too infrequently – 55%of the organizations studied saidthat business continuity management is either not involved or only informally involved in data breach 2. Organizations are about 5% percent less likely to suffer a data breach when they involve business continuity in a cyberincident 5% Less Likely
© 2014 IBM Corporation 19 Critical Infrastructure panel at Securetech 2014 Collaboration-How to involve business continuity with cyber security Establish cross-representation Conduct joint recovery testing Leverage crisis management for coordination Speak language the business understands – economic impact 231 4 Align for Advantage use the 2014 Cost of Data Breach Study to begin building a persuasive business case
© 2014 IBM Corporation 20 Critical Infrastructure panel at Securetech 2014Thank you Paige Poore Director of IBM Global Business Continuity linkedin.com paigepoore poore@us.ibm.com twitter.com/poore27
© 2014 IBM Corporation 21 Critical Infrastructure panel at Securetech 2014 For more information… IBM’s internal implementation of Global Business Continuity Management - Read the IBM Thought Leadership White Paper -How IBM is enhancing BCM to help address changing business realities -A more business-centric approach to help reduce business continuity risk”. Download a copy of the paper here: http://ibm.co/1hIruml 2014 Cost of Data Breach Study: Global Analysis: Read the global analysis for a worldwide view plus new data on security threats and the role of business continuity managementDownload a copy of the paper here:http://ibm.co/1g6STe6

More Related Content

PDF
SMi Group's Oil & Gas Cyber Security conference & exhibition
Dale Butler
 
PPTX
Automation of Information (Cyber) Security by Joe Hessmiller
Joe Hessmiller
 
PPTX
Comprehensive risk management for a cyber secure organization
Joe Hessmiller
 
PDF
Security in Mergers and Acquisitions - NTT Security - Miriam Levenstein
Miriam L
 
PDF
Pulse 2013 - How to run a successful BYOD initiative
Chris Pepin
 
PDF
EMA Megatrends in Cyber-Security
Enterprise Management Associates
 
PDF
ACT 2014 Business or Pleasure the Challenges of Bring Your Own Device Policie...
Association for Commuter Transportation (ACT)
 
PDF
Cyber security framework
Yann Lecourt
 
SMi Group's Oil & Gas Cyber Security conference & exhibition
Dale Butler
 
Automation of Information (Cyber) Security by Joe Hessmiller
Joe Hessmiller
 
Comprehensive risk management for a cyber secure organization
Joe Hessmiller
 
Security in Mergers and Acquisitions - NTT Security - Miriam Levenstein
Miriam L
 
Pulse 2013 - How to run a successful BYOD initiative
Chris Pepin
 
EMA Megatrends in Cyber-Security
Enterprise Management Associates
 
ACT 2014 Business or Pleasure the Challenges of Bring Your Own Device Policie...
Association for Commuter Transportation (ACT)
 
Cyber security framework
Yann Lecourt
 

What's hot (18)

PPTX
BYOD
Biman Pathirage
 
PDF
3 Enablers of Successful Cyber Attacks and How to Thwart Them
IBM Security
 
PDF
IT Position of Trust Designation
Murray Security Services
 
PPTX
BYOD (Bring Your Own Device)
Michael W. Chitwa
 
PDF
Energy Industry Organizational Strategies to Increase Cyber Resiliency
EnergySec
 
PPT
Bring Your Own Device
InTechnology Managed Services (part of Redcentric)
 
PPTX
BYOD
Neeraj Muduli
 
ODP
Byod
Asifulla Azad
 
PDF
Dynamic Cyber Defense
EnergySec
 
PPTX
The intersection of cool mobility and corporate protection
EnclaveSecurity
 
PPTX
Leveraging Your Security System to Impact Your Bottom line
guidepostsolutions
 
PDF
Security Trends and Risk Mitigation for the Public Sector
IBMGovernmentCA
 
PDF
Bring your own device
C/D/H Technology Consultants
 
PPTX
BYOD (Bring Your Own Device) Risks And Benefits
Modis
 
PPTX
Risks and Benefits of Bringing Your Own Device
CooperTechnologiesInc
 
PPTX
Bring Your Own Device (BYOD)
k33a
 
PPTX
Nonprofit IT Trends 2018
Community IT Innovators
 
DOCX
Cmgt 582 Enthusiastic Study / snaptutorial.com
Stephenson032
 
BYOD
Biman Pathirage
 
3 Enablers of Successful Cyber Attacks and How to Thwart Them
IBM Security
 
IT Position of Trust Designation
Murray Security Services
 
BYOD (Bring Your Own Device)
Michael W. Chitwa
 
Energy Industry Organizational Strategies to Increase Cyber Resiliency
EnergySec
 
Bring Your Own Device
InTechnology Managed Services (part of Redcentric)
 
BYOD
Neeraj Muduli
 
Byod
Asifulla Azad
 
Dynamic Cyber Defense
EnergySec
 
The intersection of cool mobility and corporate protection
EnclaveSecurity
 
Leveraging Your Security System to Impact Your Bottom line
guidepostsolutions
 
Security Trends and Risk Mitigation for the Public Sector
IBMGovernmentCA
 
Bring your own device
C/D/H Technology Consultants
 
BYOD (Bring Your Own Device) Risks And Benefits
Modis
 
Risks and Benefits of Bringing Your Own Device
CooperTechnologiesInc
 
Bring Your Own Device (BYOD)
k33a
 
Nonprofit IT Trends 2018
Community IT Innovators
 
Cmgt 582 Enthusiastic Study / snaptutorial.com
Stephenson032
 
Ad

Similar to SecureTech 2014: Risk, Business Continuity and Cybersecurity - A Resiliency Perspective (20)

PDF
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
ngweneelmati
 
PDF
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
ngoahhx4886
 
PPTX
Leveraging Compliance to “Help” Prevent a Future Breach
Kevin Murphy
 
PDF
Securing the C-Suite: Cybersecurity Perspectives from the Boardroom
IBM Security
 
PDF
Cybersecurity Summit 2020 Slide Deck
Cimetrics Inc
 
PDF
BIFM Risk Management Event 8th September 2016
Whitbags
 
PDF
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
clerxmbowou
 
PPT
Holistic Resilience
Continuity and Resilience
 
PPT
Don't risk it presentation
Vincent Kwon
 
PDF
Get Prepared
Hewlett Packard Enterprise Business Value Exchange
 
PDF
Dealing with Information Security, Risk Management & Cyber Resilience
Donald Tabone
 
PDF
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Sarah Nirschl
 
PDF
Get Ahead of Cyber Security by Tiffy Issac, Partner EY India
Rahul Neel Mani
 
PDF
Risksense: 7 Experts on Threat and Vulnerability Management
Mighty Guides, Inc.
 
PDF
Fall2015SecurityShow
Adam Heller
 
PPTX
The Journey to Cyber Resilience in a World of Fear, Uncertainty and Doubt
John D. Johnson
 
PPSX
Cyber Attacks aren't going away - including Cyber Security in your risk strategy
James Mulhern
 
PDF
16231
James Grant
 
PPT
Breaking down the cyber security framework closing critical it security gaps
IBM Security
 
PDF
Cyber Resilience - Welcoming New Normal - Eryk
Eryk Budi Pratama
 
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
ngweneelmati
 
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
ngoahhx4886
 
Leveraging Compliance to “Help” Prevent a Future Breach
Kevin Murphy
 
Securing the C-Suite: Cybersecurity Perspectives from the Boardroom
IBM Security
 
Cybersecurity Summit 2020 Slide Deck
Cimetrics Inc
 
BIFM Risk Management Event 8th September 2016
Whitbags
 
Business Continuity State of the Industry Report 1st Edition Herbert J. Mattord
clerxmbowou
 
Holistic Resilience
Continuity and Resilience
 
Don't risk it presentation
Vincent Kwon
 
Get Prepared
Hewlett Packard Enterprise Business Value Exchange
 
Dealing with Information Security, Risk Management & Cyber Resilience
Donald Tabone
 
Perception Gaps in Cyber Resilience: What Are Your Blind Spots?
Sarah Nirschl
 
Get Ahead of Cyber Security by Tiffy Issac, Partner EY India
Rahul Neel Mani
 
Risksense: 7 Experts on Threat and Vulnerability Management
Mighty Guides, Inc.
 
Fall2015SecurityShow
Adam Heller
 
The Journey to Cyber Resilience in a World of Fear, Uncertainty and Doubt
John D. Johnson
 
Cyber Attacks aren't going away - including Cyber Security in your risk strategy
James Mulhern
 
16231
James Grant
 
Breaking down the cyber security framework closing critical it security gaps
IBM Security
 
Cyber Resilience - Welcoming New Normal - Eryk
Eryk Budi Pratama
 
Ad

Recently uploaded (20)

PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
Approach and Philosophy of On baking technology
30anthuong17
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
NewMind AI Weekly Chronicles - August'25-Week II
NewMind AI
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
MYSQL Presentation for SQL database connectivity
Swati270511
 

SecureTech 2014: Risk, Business Continuity and Cybersecurity - A Resiliency Perspective

  • 1. © 2014 IBM Corporation Critical Infrastructure: Risk, Business Continuity and Cybersecurity -a Resiliency Point of View Paige Poore Director of IBM Global Business Continuity, Resiliency Services
  • 2. © 2014 IBM Corporation 2 Critical Infrastructure panel at Securetech 2014 Focus: 1.Resilience and Risk –lessons learned. Take traditional business continuity to the next level. 2.Cybersecurity -the problem that won't go away. What do risk and continuity professionals need to know? 3.How ready are you?Actions you can take - collaborative actions in managing risks when disruptions occurAlign for Advantage
  • 3. © 2014 IBM Corporation 3 Critical Infrastructure panel at Securetech 2014 Scanning the Horizon NewStrategic Risks Enhancing existing approaches Are you ready for what’s ahead?
  • 4. © 2014 IBM Corporation 4 Critical Infrastructure panel at Securetech 2014 New business realities are changing how we approach business continuity ISO 22301 Mergers & acquisitions Changing workplace demographics Social media Expansion into new markets Elevated risk awareness Consider new risks on your horizon Integration and consolidation of operations
  • 5. © 2014 IBM Corporation 5 Critical Infrastructure panel at Securetech 2014 Reputation risk is driving increased focusSource: The economics of IT risk and reputation What business continuity and IT security really mean to your organizationFindings from the 2013 Ponemon Institute study sponsored by IBM Leaders increasingly aware of economic and reputational impact of disruptions
  • 6. © 2014 IBM Corporation 6 Critical Infrastructure panel at Securetech 2014 Vision Critical: Risk of Data Insecurity Angus Reid survey thru Vision Critical Sponsored by IBM Canada Soon to be published ! Angus Reid, thru Vision Critical, recently conducted a survey to evaluate Canadian(average user) awareness of IT security and availability issues. 1.50% of Canadians would likely or very likely get involved with a organization if they took extra steps to protect customer information. 2.83%+ of Canadians would likely or very likely switch organizations if they felt their personal information was not being adequately protected or if the organization experienced a major breach. Private talks with their wallets Publictalks with their votes Reputation Risk:
  • 7. © 2014 IBM Corporation 7 Critical Infrastructure panel at Securetech 2014 •STRATEGIC •Risk based, prioritize, top 5-10% •Prioritize for investment tradeoff decisions •HOLISTIC, 360 degree view •Look past the silos! •SIMPLE. Consistent •Consistent, Shared Terminology •Impact based planning •ISO 22301 –use it as your Rosetta-stone •Joint testing and collaboration –it’s the simple things that can trip you up! Resilience and Risk -take the traditional business continuity approach to the next level It’s a journey…Focus on these key drivers
  • 8. © 2014 IBM Corporation 8 Critical Infrastructure panel at Securetech 2014Incident occursBusiness Continuity management is about keeping the business running afterhealth and safety issues have been addressedPeople IT SitePlan3#3 Business ContinuityMaintain or resume critical business processes by enacting appropriate business continuity and / or IT Disaster Recovery Plan 1.Business Continuity Plan(Business Recovery) 2. IT Disaster Recovery Plan(Technology Recovery) #1 EmergencyResponse Priority: protect people and property; assemble key personnel (Emergency Plan #2 Crisis ManagementAssess, act and recover physical services; Communicate throughout the event1 4 2 8 Return to Business as Usual Event crisis response through return to normal – is collaboratively managed with defined declaration, communication and notification protocols
  • 9. © 2014 IBM Corporation 9 Critical Infrastructure panel at Securetech 2014 9Anything that is connected to the Internet can be hacked. Everything is being connected to the Internet Cloud Based Computing Resiliency & Risk for Critical Infrastructure-TechnologyTrends Things, in the IoT, can refer to a wide variety of devices such as -heart monitoring implants, biochip transponders on farm animals, automobileswith built-in sensors, or field operation devices that assist fire-fighters in search and rescue.[3] Current market examples include smart thermostat systems and washer/dryers that utilize wififor remote monitoring. Monitoring and controlling operations of urban and rural infrastructureslike bridges, railway tracks, on-and offshore- wind-farms is a key application of the IoT. Source: https://ibm.biz/BdEqrX
  • 10. © 2014 IBM Corporation 10 Critical Infrastructure panel at Securetech 2014 $8.98 Are you ready for an always-on world? The next era of business continuity:
  • 11. © 2014 IBM Corporation 11 Critical Infrastructure panel at Securetech 2014 Cybersecurity –The problem that isn’t going away * >$213 Average cost per compromised record globally, per 2014 Cost of Data Breach Study
  • 12. © 2014 IBM Corporation 12 Critical Infrastructure panel at Securetech 2014 Economic impact –3 key factorsNote: Graphical Views are US averages (vs. global ) Economic impact of critical infrastructure disruptions -How much it will impact you is dependent on a number of factors
  • 13. © 2014 IBM Corporation 13 Critical Infrastructure panel at Securetech 2014 Looking forward –Economic Impact, Trends & Probability2006 to 2014 –Trends, Components of cost
  • 14. © 2014 IBM Corporation 14 Critical Infrastructure panel at Securetech 2014 Looking forward -Economic Impact, Trends & Probability Within Next 24 Months Likelihood in next 24 months
  • 15. © 2014 IBM Corporation 15 Critical Infrastructure panel at Securetech 2014 How do you measure up?
  • 16. © 2014 IBM Corporation 16 Critical Infrastructure panel at Securetech 2014 Focus: 1.Resilience and Risk –lessons learned. Take traditional business continuity to the next level. 2.Cybersecurity -the problem that won't go away. What do risk and continuity professionals need to know? 3.How ready are you?Actions you can take -collaborative actions in managing risks when disruptions occur Align for Advantage
  • 17. © 2014 IBM Corporation 17 Critical Infrastructure panel at Securetech 2014 Actions you can take Collaborative action in managing risks when disruptions occur
  • 18. © 2014 IBM Corporation 18 Critical Infrastructure panel at Securetech 2014 Business continuity and cyber security can work in tandem to limit damage $145$136Average of $9 Because data breaches often affect thousands of records, the savings can be significant. 1. Business continuity helps reduce cost of data breach 3. However, that involvement occurs too infrequently – 55%of the organizations studied saidthat business continuity management is either not involved or only informally involved in data breach 2. Organizations are about 5% percent less likely to suffer a data breach when they involve business continuity in a cyberincident 5% Less Likely
  • 19. © 2014 IBM Corporation 19 Critical Infrastructure panel at Securetech 2014 Collaboration-How to involve business continuity with cyber security Establish cross-representation Conduct joint recovery testing Leverage crisis management for coordination Speak language the business understands – economic impact 231 4 Align for Advantage use the 2014 Cost of Data Breach Study to begin building a persuasive business case
  • 20. © 2014 IBM Corporation 20 Critical Infrastructure panel at Securetech 2014Thank you Paige Poore Director of IBM Global Business Continuity linkedin.com paigepoore poore@us.ibm.com twitter.com/poore27
  • 21. © 2014 IBM Corporation 21 Critical Infrastructure panel at Securetech 2014 For more information… IBM’s internal implementation of Global Business Continuity Management - Read the IBM Thought Leadership White Paper -How IBM is enhancing BCM to help address changing business realities -A more business-centric approach to help reduce business continuity risk”. Download a copy of the paper here: http://ibm.co/1hIruml 2014 Cost of Data Breach Study: Global Analysis: Read the global analysis for a worldwide view plus new data on security threats and the role of business continuity managementDownload a copy of the paper here:http://ibm.co/1g6STe6