Sean Deuby | Principal Technologist

Does your cybersecurity plan take your organization’s goals for operational resilience into account? In a recent episode of the Hybrid Identity Podcast (HIP), I spoke with Semperis strategic advisor, former bp CISO, and HIP London panel speaker Simon Hodgkinson. Simon is an expert in operational resilience and how it relates to disaster recovery and cybersecurity—especially Active Directory security.

What is operational resilience?

Disaster recovery focuses on recovering operations and infrastructure, specifically in a short time frame. Simon notes that operational resilience is a much broader effort, one that includes questions about the governance you have in place, operational risk management, business continuity, crisis management, third-party suppliers, and cyber and IT risk.

Cyber incidents can be a “trigger event” that affects your ability to keep the business running, but so can health and safety events or environmental events. A strong resiliency plan, then, takes a more holistic look at what it takes to keep your business running—and that includes your approach to recovering Active Directory.

Take a listen to my fascinating conversation with Simon. We discuss:

  • How does disaster recovery fit into a strong operational resiliency plan?
  • How can you talk with executives or board members to strengthen your resilience (and by proxy, your cybersecurity stance)?
  • What lessons does the recently announced $1 million U.S. Government fine against Colonial Pipeline hold for the disaster recovery community?
  • How can cybersecurity experts and identity pros demystify Active Directory security in a way that accelerates its adoption as part of a resiliency plan?

 

What is the Hybrid Identity Protection Podcast?

Launched in April 2020, the HIP Podcast is the premier podcast for cybersecurity pros charged with defending hybrid identity environments. In each episode, I interview some of the industry’s most knowledgeable—and interesting—experts.

For more information about hybrid identity protection and its role in business continuity and resiliency, visit our Resources page.