Google Cloud responded to the outage by conducting a thorough post-mortem analysis and implementing additional checks and balances in its storage management systems to prevent similar incidents in the future.
Read more π https://lttr.ai/AaBSa
#DisasterRecoveryPlans #ServerConfigurationChange #ProvideRealTimeVisibility #ExpectedResolutionTimelines #ProvidingRegularUpdates #PrioritizeOngoingTraining #PreventSimilarIncidents #RobustTestingProcedures #GoogleCloudResponded
Lessons from Major Outages β CyberSafeguard: https://lttr.ai/AZ4qL
#DisasterRecoveryPlans #ServerConfigurationChange #ProvideRealTimeVisibility #ExpectedResolutionTimelines #ProvidingRegularUpdates #PrioritizeOngoingTraining #PreventSimilarIncidents #RobustTestingProcedures #GoogleCloudResponded #GarneredWidespreadAttention
One of the key lessons learned from major outages is the importance of proactive monitoring and alerting systems to quickly identify and respond to potential issues before they escalate into full-blown outages.
Read more π https://lttr.ai/AZYKw
#DisasterRecoveryPlans #ServerConfigurationChange #ProvideRealTimeVisibility #ExpectedResolutionTimelines #ProvidingRegularUpdates #PrioritizeOngoingTraining #PreventSimilarIncidents #RobustTestingProcedures #GoogleCloudResponded
The most comprehensive and current guidance on this subject can be found in the NIST special publication 800-161r1, Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations (C-SCRM).
Read more π https://lttr.ai/AZNAF
Cyber supply chain risk is defined as a lack of visibility into, understanding of, and control over many of the processes and decisions involved in the development and delivery of cyber products and services.
Read more π https://lttr.ai/AWlSc
Develop secure and documented processes for vendor offboarding, ensuring the safe return or certified destruction of organizational data, and revocation of system access upon termination of services.
Read more π https://lttr.ai/ATfPl
Define clear roles and responsibilities for managing third-party relationships, including the process for ongoing due diligence and risk assessment.
Read more π https://lttr.ai/ARUqC
In this latest update, NIST has implemented their guidance in accordance with Executive Order 14028, Improving the Nationβs Cybersecurity, resulting in a massive body of guidance that is 315 pages long.
Read more π https://lttr.ai/AQegv
Regularly monitor service providers to ensure compliance with security requirements and contractual obligations.
Read more π https://lttr.ai/AQbGs
Perform initial and periodic risk assessments of service providers, documenting their ability to meet security and performance requirements.
Read more π https://lttr.ai/AQAuw
Is Your Organization Following Best Practices for Vendor Risk Management?: https://lttr.ai/APxpO
