Last week, a major technology outage swept the globe, impacting thousands of companies and industries worldwide. While this incident may be dubbed “the largest IT outage in history,” global computer system outages of any kind can be highly disruptive, affecting businesses, governments, and individuals.
Here are some lessons learned from such events:
Having backup systems and data replication across multiple geographic locations can minimize downtime and data loss. Identifying the cause of an outage and finding a solution is priority number one, but recovering from the incident can turn into a long and arduous process without the right backup. Research and implement different systems to hold data in a secondary location, so that operations can get up-and-running again with minimal delay.
Organizations must have a well-defined and tested incident response plan to quickly address and mitigate the impact of outages. Each time an organization makes major software changes, it is best practice to review and make edits as necessary to the response plan as well. Detail out each of the steps for problem detection, eradication of the source issue, and recovery of information.
Regularly updating software and hardware and performing maintenance can prevent issues caused by outdated technology or known vulnerabilities. Detect any “buggy” processes or irregular activity on an ongoing basis before it can result in a crisis. It is also beneficial to test new technology on a few isolated devices before launching it out company-wide to catch any glitches and contain them quickly.
Robust cybersecurity measures, including firewalls, intrusion detection systems, and regular security audits, are crucial to protect against attacks that can cause outages. Above all, understanding the importance of cybersecurity is integral to preparing for cyber-attacks. For companies, it is essential to implement comprehensive cybersecurity measures that include education, strong password practices, and network protection.
Continuous monitoring of systems and real-time alerts can help detect issues early and respond before they escalate into full-blown outages. Research trustworthy antivirus and anti-malware software to detect suspicious activity and implement two-factor authentication to receive notice when someone is trying to login to a company account.
Clear communication with stakeholders, including employees, customers, and partners, is essential during an outage to manage expectations and provide updates. Implement a crisis communication plan that details who to communicate with internally, externally, and when. Provide only the most accurately detailed information when possible. Share both the steps being taken to resolve the issue and resources to turn to in the meantime while the problem is being resolved. Once the outage is resolved, detail the steps being taken to ensure that the problem will not occur again moving forward.
Regular training for IT staff and employees on handling outages and security protocols can improve the organization’s readiness and response. Offer continuing education opportunities to IT staff so that your team can stay up to date on best cybersecurity and technology practices. Consider offering employees time to participate in training seminars or send out information internally to stay prepared.
Ensuring that suppliers and vendors also have robust systems and contingency plans can prevent outages caused by third-party failures. It is important to keep data protected within an organization, but anyone outside of the organization with access to information could pose a risk as well. Communicate with vendors and service providers on their action plans to mitigate threats.
Understanding and adhering to legal and regulatory requirements for data protection and business continuity is critical. If there is a potential for customer or employee data to be leaked in the event of an outage, ensure that your company is following any requirements or standards that may require you to inform communities of a threat. Additionally, through the adoption and maintenance of new systems, companies should be checking that all practices involving obtaining and storing data are in compliance with legal and regulatory requirements.
Conduct thorough post-incident reviews to understand the root causes and implement improvements to prevent future occurrences. This could include switching or increasing any previous security software, implementing additional education to those with access to computer systems, or updating devices.
These lessons emphasize the importance of preparation, vigilance, and adaptability in managing and mitigating the effects of global computer system outages.
To stay up to date on news and resources such as this and other topics of importance to the real estate industry, subscribe to the free CRE Insight Journal Newsletter using this link.