Home » Becoming resilient against risk: the new benchmark for best-practice security*

Becoming resilient against risk: the new benchmark for best-practice security*

System compromise can affect not only an organization’s information but its people and reputation 

In the information security field, best practice now looks beyond an organization’s ability to recover from incidents, to being resilient against them. 

So how do we define resilience, and what does it look like in practice? 

Information resilience is a state where an organization or its clients can access their information securely and at exactly the moment they need it, with its integrity assured, regardless of the threats that exist.

The key to achieving information resilience for an organization is to realise the importance of the information assets it controls. 

How it does this will vary by the nature of the business, but the work should always be systematic and measurable.

Upper management need to be fully engaged in the process if it is to work; that starts by asking how resilient the
organization currently is.

Information resilience empowers organizations to safeguard their information – physical, digital and intellectual property – throughout its lifecycle from creation to destruction. 

It requires adopting information security-minded practices that enable stakeholders to create, store, access, use – and ultimately destroy – information securely and effectively.

In practice, this breaks down into four interconnecting subdomains to address with strategies, plans and actions.

These are: cybersecurity, information management and privacy, security awareness and training and compliance with requirements and regulations. 

When addressing these four domains, organizations need to employ operational best practices and good governance. 

They must be implemented in areas such as information security management, privacy management, third party supplier management, awareness, vulnerability management, data loss prevention (DLP), change management and review processes.

Regular incident management exercises help organizations practice their procedures outside of an actual event. 

They should also use repeatable risk-based processes to understand potential risks from third-party suppliers.

Organizations that have achieved a state of information resilience are ready for the unexpected. 

There are many business benefits in planning for resilience and it ensures longevity and sustainability of a business. 

Find out more about cybersecurity with BSI. Call 1300 730 134 or visit
bsigroup.com/en-au

*Copy supplied by BSI

Digital Editions

  • Farewell to a much-loved bridge

    Farewell to a much-loved bridge

    Narrabri Shire Council hosted a special community farewell event in mid-January, Brekkie on the Bridge, ahead of the upcoming demolition of the Violet Street Bridge.…

More News

  • Farmers urged to register for rural aid

    Farmers urged to register for rural aid

    Farmers across Australia – particularly those in disaster-impacted regions – have been strongly encouraged to register with Rural Aid now, as ongoing natural disasters and worsening weather conditions continue to…

  • Coonabarabran VIC punches above it’s weight

    Coonabarabran VIC punches above it’s weight

    Warrumbungle Shire Council has welcomed new data confirming the Coonabarabran Visitor Information Centre as one of the top three performing Visitor Information Centres in New South Wales. Official figures released…

  • Storm-proofing Seymour River Bridge is long overdue

    Storm-proofing Seymour River Bridge is long overdue

    If I had a dollar for every time I saw the question, “Is the Seymour River Bridge open?” on social media, the upgrade to that stretch of road might already…

  • Newcastle Lord Mayor resigns

    Newcastle Lord Mayor resigns

    Newcastle Lord Mayor Cr Ross Kerridge resigned from his role as Lord Mayor of Newcastle in early February. The Lord Mayor wrote to City of Newcastle CEO Jeremy Bath to…

  • Unwavering support and thanks in Bondi aftermath

    Unwavering support and thanks in Bondi aftermath

    Councils across NSW are being encouraged to continue to provide direct support for the Waverley community in the wake of December’s devastating terrorist attack at Bondi while Waverley has paid…

  • Redlands Koala population stable

    Redlands Koala population stable

    Redland City Council has become the first local government in south-east Queensland – and within the koala’s federally-listed northern endangered range – to report stabilisation of its city-wide koala population.…

  • Looking for “Red Fleet” Solutions

    Looking for “Red Fleet” Solutions

    The Country Mayors Association of NSW (CMA) has met with NSW Emergency Services Minister the Hon Jihad Dib MP about the Red Fleet issue, which refers to local Councils currently…

  • Three small changes making big differences in grand programs

    Three small changes making big differences in grand programs

    Local government grant programs are designed to create community impact. Yet for many councils, the effectiveness of those programs is shaped less by intent and more by the processes that…

  • Alice skating program a success

    Alice skating program a success

    Free ice skating, packed programs and smiling faces have marked the end of a hugely successful school holiday program delivered through a partnership between Alice Springs Town Council, the Northern…

  • Supporting Waverley

    Supporting Waverley

    Councils across NSW are being encouraged to continue to provide direct support for the Waverley community in the wake of December’s devastating terrorist attack at Bondi. In the aftermath of…