Principles For Data Recovery
Data Recovery is a complex topic to manage.
Recovery Point Objectives are defined by business teams.
Not all organisations are convinced that there is a reasonable need to mitigate complex data issues post an extreme disruption such as a cyber attack, this can be evidenced in the following paper created as a joint exercise between SIFMA and Protiviti:
Protiviti https://www.protiviti.com/gl-en/insights-paper/principles-for-data-recovery-severe-cyber-scenario
sequenceDiagram
participant User
participant IT
participant Security
participant Backup
participant Service
User->>IT: Reports ransomware attack
IT->>Security: Confirms ransomware infection
Security->>IT: Performs forensics analysis
IT->>Backup: Restores data from backup
Backup->>IT: Confirms data restoration
IT->>Service: Restarts service
Service->>IT: Confirms service availability
IT->>Security: Validates service integrity
Security->>IT: Confirms service validation
IT->>User: Informs user of service recovery
comments powered by Disqus