Ransomware Readiness Review

Ransomware Readiness Review

Ransomware Readiness Review Services

The US Department of Homeland Security defines ransomware as "a type of malicious software, or malware, designed to deny access to a computer system or data until a ransom is paid". Ransomware is arguably the most widespread and devastating cybersecurity threat currently facing the country. It seems that a ransomware attack manages to make the news at least weekly, if not daily, and the victims hitting continuously closer to home, from our school departments to our grocery stores. Experts have estimated that ransomware costs organizations globally $8 billion in 2018, with a predicted rise to $11.5 billion in 2019. No industry or organization is immune to being targeted for ransomware attacks.

Compass IT Compliance employs a team of highly certified and experienced Ethical Hackers and IT Risk Specialists to assist organizations in mitigating their risk of a breach. Due to the rising threat of ransomware attacks, we've created the Ransomware Readiness Review service to help organizations not only mitigate the risk of ransomware infecting their systems, but also minimize the potential damages and stoppages that would result from a successful ransomware attack. Our Ransomware Readiness Review can be broken down into five areas:

  1. Business Continuity and Disaster Recovery Review
    When an event strikes, being able to respond quickly to that event can make the difference in restoring business operations in hours instead of days, weeks, or months. We will build or review the current business continuity and disaster recovery plans and make recommendations for improvement as necessary. We can also perform tabletop tests of these plans
  2. Backup and Recovery Review
    In many cases, the best way to recover from a ransomware attack is to restore from offline backups. However, some attacks will also attempt to encrypt or delete these backups. We will review the current backup and restore procedures and assist in ensuring that timely backups are being taken and proper recovery procedures are followed. We will ensure that all critical data, as defined by the organization, is being backed up
  3. Security Awareness Training 
    The first and most important line of defense against ransomware attacks is your staff. Studies show that repeated education around security awareness is one of the best ways to combat phishing and ransomware attacks. We will provide onsite and/or online training to your staff that can be targeted specifically to address ransomware, or more general security awareness training topics
  4. Ransomware Simulation Testing  
    Compass IT Compliance has designed simulated ransomware attack tests using the industry's best tools and real-world experiences. We will work with your management staff and tailor campaigns to simulate a ransomware threat and review the organizational response. These include phishing assessments and software that simulates a real ransomware attack
  5. Incident Response Review 
    When a security event occurs, does your company know how to respond to the threat appropriately? We will review your current Incident Response Plan for completeness and provide any recommendations to assist in improving the plan. Compass can also perform a tabletop test of the current plan. In cases where an incident response plan is missing, the Compass team can assist with the development

Let Compass IT Compliance assist your organization in assessing any risks present through our Ransomware Readiness Review so you can mitigate not only your risk of falling victim to a ransomware attack, but also minimize the damage that a successful attack could inflict. Contact us today to discuss your unique situation!

Ransomware Blog Posts

Contact Us