As a CISO, to ensure the availability of systems in a company I would Implement an application of the latest software updates to ensure patches on software and firmware. Anti-Virus software and Anti-Spyware to protect information and ensure that security tools are operating effectively. Maintain and monitor activity logs. Control public facing websites with encryption. Control the amount of access with removable media such as SD cards. Encourage staff to send data via email. Activate firewalls and ACLs to create buffer zones between network and the internet.