As a CISO (Chief Information Security Officer) some protections that I would implement to ensure availability of my systems would include asset inventory. The most important role of a CISO is to protect its company’s OT (operational technology) systems, and to begin doing so one would need to explore, discover, as well as inventory every single OT element within the company so that they can gain a better understanding of what it is that they are protecting. Another protection that I would implement to ensure availability of my company’s systems is patching. Patching is extremely vital to protecting any company’s systems, because if you just simply keep the systems up to date with the newest bug and security patches you are automatically mitigating about 99% of all potential threats to your company. It is so important for a company to keep up with their patching because when hackers come across a vulnerability they then try to build some kind of tool in order to take advantage of that vulnerability and exploit a company for not patching that vulnerability. Lastly, another protection that I would implement in order to ensure availability of my systems would be security emergency drills, because just like anything else in life if you wish to succeed at something then you need to prep yourself for it. Running through exercises that simulate an attack to your company quite often would ensure that the plans you have in place actually work, as well as that your team knows how to execute them properly to stop the attack.