Selecting Strategic, Tactical, and Operational Solutions
Once organizations have a clear understanding of their information assets and the value they represent to the business, the various vulnerabilities that assets exhibit, and the threats they are facing, they will be better placed to begin development of an overall cyberattack prevention and response strategy which will form the basis of more detailed action plans.
This chapter will deal with these two principal areas:
Prevention—the proactive side of cybersecurity and business continuity, which aims to reduce the likelihood of a successful cyberattack by putting measures in place that either stop such an attack or at least reduce its impact.
Response—the reactive side of cybersecurity ...