Why Measuring Maturity Is Critical To Cyber Resiliency

James Blake is the Vice President of Cyber Resiliency at Cohesity and has over 30 years of experience as a CISO and in incident response.
getty
I often say that cyber resilience isn't something you can buy—it's an emergent property, the result of an organization taking the appropriate preparatory and operational steps to withstand a cyberattack.
I once worked for a CEO whose boilerplate answer to any problem was to back a proverbial truck full of money into it—dumping dollar bills until the issue disappeared. He was used to traditional business continuity and disaster recovery scenarios, and he grew increasingly frustrated when "those cyber guys" couldn't give him a clear answer about how long systems would be down.
This CEO was used to disruptions with obvious root causes: natural disaster, equipment failure, power loss or misconfiguration. Recovery in those cases was largely predictable—restoring operations en masse in the same or an alternate environment. You just needed to understand interdependencies and calculate speed—of network, storage and backup. Recovery time objectives (RTOs) and recovery point objectives (RPOs) could be measured and tested.
But cyber incidents—especially large-scale destructive ones like ransomware or wiper attacks—are different. Attackers choose from hundreds of techniques across MITRE ATT&CK's 14 tactics. They disable end-point controls using vulnerable device drivers, hide in plain sight with legitimate IT tools, and rapidly weaponize and exploit vulnerabilities through Ransomware-as-a-Service platforms—faster than most organizations can patch.
Did the attacker pivot through one machine or 50? If each machine could be a beachhead for reattack, investigation and remediation timelines vary wildly. Recovery could involve patching, configuration rollbacks, new controls, rotating credentials—all of which take time. How much time? Unfortunately, the adversary is often the one in control of that timeline.
This lack of definitive timelines makes business leaders uneasy, but it's the reality we live in. Ironically, I've found that organizations with the most rigid RTOs are often the least prepared. They recover too quickly, skip remediation and are just as quickly reinfected or reattacked.
Once we clarified the difference between business continuity, disaster recovery and secure cyber recovery, the CEO began to see that the headcount and spending were only part of the solution. What worked better? Planning. Cross-functional collaboration. A phased, pragmatic improvement plan. In short, maturity.
Achieving cyber resilience isn't just about deploying the latest-and-greatest technology. It's about operationalizing that technology—building the appropriate workflows, processes and muscle memory so everyone knows their role when the inevitable attack happens. If we want to shorten those unpredictable recovery timelines, resiliency is our best tool.
Think of cyber resilience as a chain—made up of technology, people and process. Each link matters. As the saying goes, a chain is only as strong as its weakest link.
Any weak point—alert monitoring, threat hunting, vulnerability management, backup protection, digital forensics, incident response, logging, authentication, tabletop exercises, control tuning and threat intelligence—can degrade overall resilience. Yet organizations often launch massive projects to fix just one aspect, while ignoring another that is a dumpster fire. Modest improvements to the weakest link usually yield more value than myopic focus on perfecting a single, siloed initiative.
Recent headlines show that organizations with massive cybersecurity budgets still suffer significant impacts from ransomware damage. That should be a wake-up call: It's not just about increasing spending and hiring more people. It's about applying those resources where they will measurably increase cyber resilience.
The only way to do that? Step back, measure the relative maturity of each capability in your cyber resilience chain, and keep measuring as you evolve. That is how you avoid discovering—too late—that the chain was always going to break at the weakest link.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?

Try Our AI Features

Explore what Daily8 AI can do for you:

Learn with AIFact CheckingText to SpeechAI Summary

Related Articles

Yahoo

33 minutes ago

• Yahoo

Circle Internet (CRCL) Soars 20.4% as Firm Gets 'Buy' Reco

Circle Internet Group (NYSE:CRCL) is one of the Circle Internet jumped by 20.39 percent on Friday to end at $240.28 as investor sentiment was boosted by an investment firm's upgraded rating. On Friday, Circle Internet Group (NYSE:CRCL) earned its first 'buy' recommendation from Seaport Global following the Senate's passage of a legislation that would allow the wide usage of Stablecoins by banks, fintech, and retailers, among others. The news followed Circle Internet Group's (NYSE:CRCL) announcement earlier this week that its USDC stablecoins are being adopted by retail giants Amazon and Walmart, as well as e-commerce operator Shopify. According to Circle Internet Group (NYSE:CRCL), Shopify began rolling out its feature that enables merchants to accept USDC stablecoins—a cryptocurrency founded by its founders Jeremy Allaire and Sean Neville—for payments and order fulfillment flows. Circle Internet Group (NYSE:CRCL) also said that it partnered with blockchain firm Ripple to bring USDC stablecoins to the latter's XRP Ledger blockchain as well as with digital identity company World for the addition of USDC and CCTP V2 (Cross-Chain Transfer Protocol) on World Chain. Circle Internet jumped by 20.39 percent on Friday to end at $240.28 as investor sentiment was boosted by an investment firm's upgraded rating. On Friday, Circle Internet Group (NYSE:CRCL) earned its first 'buy' recommendation from Seaport Global following the Senate's passage of a legislation that would allow the wide usage of Stablecoins by banks, fintech, and retailers, among others. The news followed Circle Internet Group's (NYSE:CRCL) announcement earlier this week that its USDC stablecoins are being adopted by retail giants Amazon and Walmart, as well as e-commerce operator Shopify. According to Circle Internet Group (NYSE:CRCL), Shopify began rolling out its feature that enables merchants to accept USDC stablecoins—a cryptocurrency founded by its founders Jeremy Allaire and Sean Neville—for payments and order fulfillment flows. A wide angle view of a bustling cityscape, capturing the potential of the consumer internet. Circle Internet Group (NYSE:CRCL) also said that it partnered with blockchain firm Ripple to bring USDC stablecoins to the latter's XRP Ledger blockchain as well as with digital identity company World for the addition of USDC and CCTP V2 (Cross-Chain Transfer Protocol) on World Chain. While we acknowledge the potential of CRCL as an investment, our conviction lies in the belief that some AI stocks hold greater promise for delivering higher returns and have limited downside risk. If you are looking for an extremely cheap AI stock that is also a major beneficiary of Trump tariffs and onshoring, see our free report on the best short-term AI stock. READ NEXT: 20 Best AI Stocks To Buy Now and 30 Best Stocks to Buy Now According to Billionaires. Disclosure: None. This article is originally published at Insider Monkey. Sign in to access your portfolio

Yahoo

33 minutes ago

• Yahoo

Amazon Is Selling a 'Must Have' $200 Magnetic Charger for $25

The Arena Media Brands, LLC and respective content providers may receive compensation for some links to products and services on this website. Amazon Is Selling a 'Must Have' $200 Magnetic Charger for $25 originally appeared on Athlon Sports. Amazon has a limited-time offer on a fantastic magnetic power bank with reliable, fast charging, and it's yours for the taking if you hurry. The e-commerce giant is currently selling the Aobbow magnetic portable charger for only $25 – a whopping 88% discount from the regular list price of $200. The black one (pictured below) is available at this discount, and the light gray one costs an extra $3. With a 10,000mAh battery capacity and equipped with 20W fast-charging technology, this portable power bank is capable of powering up to five devices simultaneously. The best part is that it's compatible with all your favorite USB devices, including iPhones, tablets, Android phones, earbuds, and smartwatches. It also comes with built-in cables, so you won't need multiple cords that get tangled. The small and exquisite power bank has slightly over 70 ratings on Amazon, with 4.8 stars out of five. Over the past month, over 50 pieces have been sold, and customers are delighted. 'I'm thrilled with how seamlessly it charges my device. The magnetic attachment works flawlessly, and the 20W PD fast charging is a game-changer,' one reviewer wrote. 'My phone (4000mAh battery) charges from 0% to 100% in under an hour and a half, and the power bank easily tops it up more than twice on a single charge,' another said. 'I can grab this charger and top off everything and still have juice left in the charger for another round! I love that it has built-in charger cords, a mag charger, and a USB port,' added a third customer. Its strong magnetic attachment keeps your phone secure, even when moving, and once the phone is attached to the power bank, charging begins instantly. There's a built-in LED digital screen that displays your real-time battery percentage, freeing you from the anxiety of not seeing how much power you have left. The manufacturer has also included advanced multi-level protection to protect against any electrical hazards. Say goodbye to battery anxiety with this lightweight battery pack that comfortably fits in your pocket. If you spend over $35 on your order, Amazon offers free shipping. This story was originally reported by Athlon Sports on Jun 21, 2025, where it first appeared.

Yahoo

an hour ago

• Yahoo

The Vintage Fast Food Burger Chain That No One Remembers Anymore

Henry's Hamburgers doesn't ring any bells for most people, but there are a few who remember the chain from the late 1950s to the mid-1970s. The restaurant had a customer-first philosophy with competitive prices and great food, and by the early 1960s, it had over 200 locations across the United States. As of June 2025, however, only one location remains. Henry's Hamburgers was the brainchild of Bresler's Ice Cream Company, which was looking to drum up business. The franchise was co-run by Harold Shook and Don Bishop, who wanted the place to feel like a spot to hang out, not like a corporate cash cow. As such, they really listened to their diners and their needs. Soon, Henry's was flourishing. Its menu catered to the average Joe, sporting 15-cent hamburgers, fish sandwiches (which always seem to taste better at restaurants), hot dogs, and the like. Throughout the 1970s, Bresler's went through a host of internal business changes and mergers, and the management of Henry's fell by the wayside. By the late 1970s, only one location remained. Still, two men saw the potential in it yet and bought out Bishop and Shook. Dave Slavicek and Wayne Senecal took over in 1983 and gave it a second life. They updated the drive-thru and built a new building for the restaurant across the road from the original location, but it still sports the original vintage look and decor. Read more: Ranking Fast Food Burgers From Worst To Best, According To Reddit Dave Slavicek bought out Wayne Senecal in 2006, and as of June 2025, Henry's Hamburgers offers much of the same fare that it did back in the day. According to its website, its "Brown Bag Special" — a meal deal consisting of a double cheeseburger, fries, and a Pepsi that was introduced in 1987 — accounts for over half of its daily sales. Desserts include cookies, apple turnovers, and funnel cake fries. Ever since its inception in the 1940s, the drive-thru has revolutionized the way restaurants can push stock. Henry's has reaped the benefits of this well — its website states that its own one contributes to around 70% of sales. It was first introduced to the restaurant in 1988 with its resurgence and has served the brand faithfully. Notably, Henry's feels like a blast from the past because of its prices. It runs a "Munchie of the Month" special which costs only 93 cents. Hard to imagine in this day and age, but the owner saw that this old-school diner had a lot more to give, so long as it wasn't just retro on the surface. It still maintains an ethos of caring for its employees and making sure both worker and customer are satisfied. It may not be as dominating as it once was — and you probably won't find it on any fast-food burger rankings — but Henry's Hamburgers is still alive and kicking. Want more food knowledge? Sign up to our free newsletter where we're helping thousands of foodies, like you, become culinary masters, one email at a time. Read the original article on Food Republic.