The Sony breach should be a wakeup call for big enterprises worldwide. Not only was it a massive loss of intellectual property, but it took the international stage with geopolitical extortion, and even stepped beyond the boundaries of the cyber world and included threats of harm to employees and patrons. Definitely a dark set of events, which will likely be attempted in the future by a variety of different threat agents against other organizations. This is not just a Sony problem or a media industry problem. This is the problem which faces every large company, industry, and government.
The effects can be blinding. As recently reported, Sony’s critical systems won’t be back online until February. Executives and board members must consider the fact Sony has tremendous resources working to get the company back up and running, yet vital systems may be down for another month. Attackers can be incredibly difficult to evict. They dig in, disrupt attempts deny them access, and leave hidden backdoors for later. Repairing damages can be time consuming and meticulous, even with proper backups and quality IT resources. Services must be restored in a way more protected than before, without sacrificing performance or usability.
The lesson to all: your company’s operational availability, among other things, can be severely affected over a long period of time, even if you have substantial resources. 2015 will may be a defining year for many organizations in protecting and recovering from cyber-attacks. Be ready. Manage your risks professionally.
IT Peer Network: My Previous Posts