This article is featured in the magazine, Protecting Against Cyberattacks: A Guide for Public Safety Leaders. Download it now.
By Dr. Kenneth Williams, Executive Director, Center for Cyber Defense at American Military University
Organizational leaders are expected to conduct due diligence in order to protect valuable resources and assets within their information systems. While many leaders clearly understand this need and their responsibilities, very few have the expertise and technological background to make an informed decision about how to actually protect their systems from intruders.
The first thing leaders must understand is that an organization’s networked systems can never be 100 percent protected from attackers. No matter how many detection systems or proactive measures are installed to protect a network, there is no guarantee against intrusion.
The best way for an organization to protect itself is to prepare as if the network is going to be attacked. Then, the organization can take measures to mitigate the risk by developing strong contingency plans and instituting comprehensive backup and restoration measures to minimize data loss.