DISCUSSION BOARD

I am the CISO for a publicly traded company. These are the protections I will implement to ensure the availability of my systems. I will first implement a disaster recovery plan that includes doing regular and updated backups, off-site storage for critical data, and making sure all of the systems and data can recover from any attack or natural disaster that could occur. Next, I will implement network segmentation to ensure that critical systems and data are isolated from less secure networks and devices. This would help prevent unauthorized access to these systems and reduce the risk of a single point of failure. Another security feature I would implement is a 24/7 response team. They could be needed on weekends or weekdays anytime during the day or night. Their job would be to ensure that any system or systems that get attacked or go offline can get back up and be available in little to no time. This solution will drastically help with downtime issues. Finally, I would implement multiple servers, switches, and routers in different locations to ensure that if one system fails, the others can pick up the slack and keep systems running until a 24/7 response team gets involved to fix any issue.