What is Cyber Resilience?

It is important to differentiate between cyber-attacks and cyber resilience.

Any organisation’s first line of defence is to prevent cyber-attacks getting through in the first place. But even the best defences can be breached.

Cyber resilience can be broadly defined as the ability of an organisation to recover from a cyber-attack that disables, or shuts down entirely, the organisation's operations.

Cyber resilience is much more than simply thwarting a cyber-attack – instead, cyber resilience assumes that some cyber-attacks will be successful and is focused on quickly restoring normal operations with the minimum of loss/damage.

Because there are different risks from different types of attack, cyber resilience has to have several dimensions. Board members need to know what these are and what questions to ask of management.

The following four case studies illustrate what can happen when an organisation lacks cyber resilience.