EMERGENCY INCIDENT RESPONSE
Get Started

Podcast: Your Flight Plan for Ransomware Recovery

Avatar photo
Conor Quinlan

Episode Summary

Aviation and cybersecurity are two passions for Jim Aldridge. Jim is a practical cyber risk management professional and the Vice President for Partnerships at MOXFIVE. He has been in cybersecurity for over 20 years.

Jim flying over scenic landscapes while he monitors the controls.

On the surface, the domains are quite distinct. Digging a bit deeper, there are parallels to draw between flying a plane and successfully preparing for and responding to cybersecurity incidents. Jim joined Art Ocain on the podcast to discuss the topic. Similarities discussed include:

  • Complexity: Like IT systems, planes and aviation are complex topics that have many nuances. There are massive amounts of systems that need to work in unison.
  • Risk Management: Risk cannot be eliminated. There is risk involved when flying across the country. There is a risk to making bold business moves and using new IT technology. Being aware of the risk and managing it are the key parts.
  • Collaboration: A single person or company cannot do it all. In aviation, there are specialists in the different parts of the aircraft. The same company that fuels the plane likely does not perform maintenance on the engines. In cybersecurity and incident response, relying on the right partner in the right realm results in better outcomes. The roles and responsibilities are known to all involved as well.
  • Tracking and Processes: A repeatable framework for execution helps organize the incident response and reduces chaos. Checklists of tasks to perform and systems to check are important in both domains. Centralized tracking also gives visibility for the entire team involves.

Jim showcasing a MOXFIVE sticker as he flies 4,000 feet above southeastern New York.

The ransomware recovery flight plan shared has elements of prevention, response, and resilience:

  • Implement endpoint detection and response (EDR).
  • Setup and require multi-factor authentication (MFA) for employees.
  • Backup your systems and test the backup recovery process in a dedicated exercise.
  • Build defense-in-depth to reduce the chance of new threat actor techniques to succeed.

Video Version

Listen to more episodes at www.airiam.com/podcast, on Spotify, Apple Podcasts, Google Podcasts, Amazon Music, and other podcast platforms.

New Resources In Your Inbox

Get our latest cybersecurity resources, content, tips and trends.

Other resources that might be of interest to you.

Proactive Cybersecurity: How to Defend Yourself Before Attacks
The digital landscape has shifted. There has never been more opportunity to find and engage your audience, but there have also never been so many cyber threats. With cyberattacks on the rise, it’s no longer a question of if you’ll be targeted—it’s when
Jesse Sumrak
>>Read More

FTC Compliance: The Gramm-Leach-Bliley Revision
Amended Safeguards Rule from FTC On December 9th, 2021, the Federal Trade Commission (FTC) amended the Safeguards Rule, the 1999 Gramm-Leach-Bliley Act, to put more meat on the bones of the previous rule. In this revision, the FTC has made the Safeguar
Avatar photo
Art Ocain
>>Read More

What to Eat at Black Hat and DEFCON 2024
Black Hat and DEFCON are quickly approaching! One of the biggest annual cybersecurity events held in Las Vegas, cyber executives, security engineers, and even hackers attend to learn the newest updates in the field. It’s an exciting place to be if you
Vivian Lee
>>Read More