The OGO Blog Archive
Welcome to the Ongoing Operations blog archive.
For our most up-to-date information, please visit ongoingoperations.com.
HOMEBusiness Continuity Planning
Preventing & Preparing for Cyberattacks: Incident Response Plan (IRP), Cyber Insurance, & Identifying Partners
How to build your Incident Response Plan
1. Standards-based – SANS or NIST
Defined Incident Response Team
2. Assign tasks and responsibilities to specific roles.
3. Assign someone to log the incident
4. Contact information for key staff, third parties, and law enforcement
5. Define how you will communicate ahead of time. Conference bridges, out-of-band communications.
6. Quick action response steps. Ransomware, Malware infection, Third-party breach
7. Test the plan at least annually.
8. Make sure everyone on the Incident Response Team is familiar.
9. Revise as necessary to match the current environment.
Preventing & Preparing for Cyberattacks: Cyber Attacks, Infection Vectors, & Layers of Defense
Common Types of Attacks on Credit Unions
1. Malware
2. Phishing Attacks
3. DDoS
4. Ransomware
Most Common Attack Vectors
1. Social Engineering: Phishing Emails
2. Clicking on Bad Links
3. Exploiting Vulnerabilities
Layers of Defense against Cyberattacks
1. Patching Vulnerabilities
2. Advanced Endpoint protection
3. Endpoint Isolation
4. Automated Backups
5. SOC/Monitoring: Early and Rapid Identification
6. Security Awareness Training
Security Advisory: Kaseya VSA – Supply-Chain Ransomware Attack
Credit Union Community, As many of you have seen reported in the news, on Friday, July 2nd, 2021, the REvil ransomware group launched a crypto-extortion campaign using an exploit of Kaseya’s VSA…
Read MoreA look at Financial Impact Analyses (FIA) for Credit Unions
What is it? A Financial Impact Analysis (FIA) helps identify and calculate possible financial loss, should there be an interruption to regular business operations. The financial impact could include the…
Read MoreHow Often to Review and Test Disaster Recovery Plans
Do you wonder how often or what aspects of your disaster recovery plan need to be tested? If so, this article provides key details…
Read MoreHow does a Pandemic impact a Hurricane Business Continuity Plan?
Credit union business continuity planning has been impacted by the COVID-19 pandemic. This pandemic has changed the way we need to look at all our business continuity plans. Since the…
Read More“Probably” Is the Enemy of BCP
How many times have you heard, “IT probably has that documented” or “the snowplow company will probably do it”? We’re guessing you’ve heard it a lot more than you should…
Read More3 Tips to Maintain Business Continuity Plans
How can you make time to maintain the business continuity plan for your credit union? Here are three tips to ensure continued operations—no matter what. When people put plans in…
Read MoreHow To Reopen Credit Union Branches (Updated!)
It’s been a weird couple of months for us. We can all agree on that. Here in Oregon, it has been about 5 weeks since we were first quarantined. At…
Read MoreHow Is Business Continuity Priced?
Have you ever wondered how much credit unions spend on business continuity and disaster recovery? How about how the pricing is determined? Do you wonder what the TCO (total cost…
Read More