In this discussion board, you are the CISO for a publicly traded company. What protections would you implement to ensure availability of your systems (and why)?

My first decision as the CISO would be to implement load balancers across the network. This allows for large amounts of traffic to be distributed across multiple networks. This can mitigate the chance of latency, crashes, and overloading on the network. Redundant power supplies can also be effective in case of power outages that alternate sources of power can be used to keep systems available. Recovery and backout plans can be effective in bringing systems back from downtime that could possibly occur. Backout plans can be effective in case a system wide update is ineffective or causes system to be down. Monitoring of all data and traffic using tools such as intrusion detection systems can help detect potential malicious traffic or activity on the network that could potentially threaten availability. To illustrate, high spikes in traffic with no explanation may be a sign of a DDoS attack which would aim to shutdown servers. These security technologies would aid in mitigating availability risk and keeping systems online to ensure business operations.