You are a small to medium sized business with a presence on line. Due to the nature of your business and the market, going on line is not an option, it's a necessity. Despite all the scary things you hear about hackers, you decide to take the risk. The potential for profits outweighs all of the bad things you may have heard.
Laptops and mobile devices and media represent one of the biggest risks for data breaches, especially for organizations with users that frequently work outside the office.
"My hard drive crashed!"
How many times have we heard that? This is usually the time when a user discovers the importance of backups, unfortunately, many times because they have not backed. People constantly remind users to backup, backup, backup - but too often it is one of those chores that never happen until it is too late.
This article must start with some qualifiers. My intent is only to relate some decisions and actions/inactions by British Petroleum management as documented by others to parallels in cyber security risk management and incident response. This article is also not intended to be an analysis or criticism of the causes of the Deepwater Horizon incident or the response.