Are you seeing any progress around how companies are directly addressing ransomware?

1.9k views1 Upvote4 Comments

CISO in Software, 51 - 200 employees
It's a balance of how you want to do it. In every forum on ransomware that I'm in, they talk about recovery—having good backups and a good playbook on recovery, etc. I never hear anything about being proactive or doing anything preventative except to follow these guidelines and make sure you have these three things in place so you'll be in a better position. 

It saddens me to see ransomware in the news every day, especially when it hits hospitals and affects patients because of my background in biotech. It's totally avoidable, but every hospital CIO I talk to says, "We don't have the budget to change anything, but we have CrowdStrike and we paid the five million dollar ransom and that's fine."
Board Member, Former CIO in Software, 10,001+ employees
I am the soon-to-be chair of the cyber subcommittee for one of my boards which is a relatively new thing. I haven't seen other boards form cyber subcommittees yet, but I expect this will be quite common because audit committees are basically full of finance people—they're CFOs.  I usually chair the audit committee and it includes PWs and the auditors among other folks. They're not technically savvy, so they don’t really understand how to deal with the risk. Security, in general, has been the issue, but ransomware has gone from an obscure risk to being front and center.
Senior Information Security Manager in Software, 501 - 1,000 employees
Slow. progress.

Ransomware is a major threat and firms need to be prepared, which many are not.

Here's a new book on the topic worth reading: Ransomware Protection Playbook
Director of IT in Software, 201 - 500 employees
Progress is slow. One thing the ransomware improved was understanding the value of good and tested backup solution and indirectly it increased the backup usage.

Content you might like

Slow recovery response times34%

Data availability is limited49%

Too expensive to scale effectively52%

Difficult to manage for widespread use37%

Prone to misconfiguration12%

No - There are no drawbacks7%


1.8k views3 Upvotes