While all organisations will have multiple layers of physical and virtual security to detect, deter and prevent attack, there is still a high probability that some sort of attack will be successful. For example, a Denial of Service attack may not cause any actual intrusion, access to sensitive data or any long lasting effect on business but it will be noticed and will be an embarrassment to the targeted organisation.
CLIO can be used to manage the aftermath of a cyber attack. The response you make will be judged by both the public and the media and will have a critical effect on how you are seen to have managed the security breach. Being considered as having badly managed the incident can have a major if not fatal impact on revenue and business.
Financial services companies face IT issues the same as any industry. However, any IT issue that causes significant downtime has a major impact on revenue and profits. At the high end of Financial Services, organisations involved in trading and broking estimate that each hour of downtime and inability to trade can lose them over $1m per hour. Retail banks may not face such potential losses but face disrupting customers and risk losing them in today's very competitive marketplace.
In addition to normal IT outages, critical financial districts such as the City of London face major issues over supply of power. The rapid growth and expansion of financial services has driven massive growth in IT and that means a huge hunger for more electrical power which is simply not available. This puts more pressure on supply and stability which can threaten availability.
CLIO allows you to develop and implement policies for responding to outages whatever the cause and enables an over-arching management of any outage beyond just core IT failures. It can also encompass the actions required to deal with supplies, customers and the media, and can ensure that everyone from IT Operations, through Public Relations to executive management are involved and fully briefed. This will help to not only restore IT service but also business as usual and protect your reputation.
Compliancy and Regulatory Control