We Can’t Do Anything About The Weather, But…

We Can’t Do Anything About The Weather, But…


When bad things happen, we can dramatically speed your time to recovery!

This seems to be a common concern, and one that is front and center with Board Members and Senior Management. What do we do if we’ve lost all access to our systems and applications? Are we prepared? What’s our RPO? (Recovery Point Objective) and What’s our RTO? (Recovery Time Objective). And BTW, I’m from Missouri, so show me!

Can you? Are you truly prepared? Have you tested your plan or assumptions?

When it comes to cyber-attacks, hackers, and malware you must assume they are already in your environment. It’s not a matter of if, but when. When will that Ransomware attack impact us? Even worse, when will that NotPetya event take us down? Will it take precious days or weeks to recover and cost us hundreds of millions of dollars ($) as it did to others before us? How do you explain a lack of preparedness to the shareholders and/or the cyber insurance company withholding your claim payments? (ugh, that fine print!).

One of the more critical and prioritized considerations in your DR/Business Continuity Planning will be AD restoration. As you probably know, your Active Directory holds the keys to kingdom; access rights for users, machines, systems, applications, etc.

There’s a reason they call these plans, “Business Resiliency” plans because it’s not just about getting IT systems up and running, but getting the business back, up and running! You can’t do that without AD functional as the dependencies across the enterprise are unquestionable.

But as they say, time is money, and it’s all about speed to recovery. So please allow me to introduce you to Semperis. Founded by a bunch of AD experts who have spent their careers parachuting in to scorched earth situations, manually resurrecting these environments to a working state and then realizing there had to be a better way, a faster more automated way that didn’t require specialized skillsets and knowledge to the extent they had accumulated over the years. As they learned, when tragedy hits….that’s not the time to open an manual and try to learn on the fly. Automating prescribed best practices can speed time to recovery by as much as 80-85% faster. And the math is easy from there…..what might have taken a week, gets cut down to a day or less…..and what’s that worth to your business?

Well, if you’re a $1B company and there are 260 business days in a year, that’s only $3.8M+ per day in revenue loss…Let alone what additional costs and impact would result from a week long shutdown…..

If anyone wants a reminder of the real costs associated with one of these wiper ware events, there was a great article

It should be noted that since this article was published there are many highly regarded Security Experts and Government Officials that feel the impact and losses were actually much higher and widespread, and maybe even double the $10B worldwide originally reported.

We’d love to share what we are doing to help companies (large and small – as everyone has the same challenge regardless of size). If speed to recovery is important to you too, please visit or give me a shout at [email protected]

*** This is a Security Bloggers Network syndicated blog from Semperis authored by Steve Mackay. Read the original post at: