CrowdStrike outage: Any quick advice for orgs affected? What immediate actions are your IT and other teams taking to mitigate the effects of the outage?

Crowdstrike Outage 2024IT Strategy & Roadmap
12.1k viewscircle icon22 Upvotescircle icon36 Comments
Sort by:
Information Security Analyst7 months ago

The most common thing I hear is stop allowing auto-updates from vendors, test yourself and implement in phases 

Lightbulb on3
Director of Systems Operations in Healthcare and Biotech10 months ago

Practically there are MDM devices that can help recover systematically from those disruption, as opposed to having people visit each computer 1 by 1. This should be incorporated into your BRP and DRP plans. The more you can automatic and centralize the better your organizational resiliency. 

Lightbulb on4
VP of IT10 months ago

I agree with all of the comments regarding Business Resumption plans - this caused us to really assess our BRPs from a horizontal perspective ... our BRPs were mostly put in place thinking from a vertical perspective.

Lightbulb on2
Senior Data Scientist in Miscellaneousa year ago

On one hand, these are still "rare events". Companies have benefited for many years from the advantages of a remotely serviced and reliably working environment. So before taking rash actions, one shall assess the impact on a long-term basis.

On the other hand, a risk-blind "Cloud-First" paradigms of companies need to be severely revised to address those kinds of events. Nevertheless, not every company has the capability for a thorough risk-assessment needed.,Even when private companies have "just" lost a large amount of money, the impact on critical infrastructure has surprised me. Any kind of single point of failure situations must be severely assessed and mitigated.

Lightbulb on1
IT Analysta year ago

While immediate mitigation is likely a simple steps, I highly advise having an appropriate strategy after remediation to prevent an outages like this one in the near future.

Lightbulb on3

Content you might like

What are the biggest technical challenges preventing organizations from being able to use their existing data to enable digital transformation?

Finding data and putting it to good use13%

Controlling the security and privacy of data45%

Understanding how data is currently being used20%

All of the above19%

None of the above1%

View Results

What are your organization’s drivers for implementing RegTech?

Support future growth36%

Automate manual processes59%

Demonstrate compliance49%

Reduce risk exposure43%

Improve customer experience16%

Reduce costs13%

View Results

When two Service Provider Companies come together in one, but they both have different procedures and processes, what are the best practices to consider?

I’m looking for a “Ransom Consideration Matrix” to use as a supplement to a ransomware response decision tree. Ideally, it would include factors such as: Reputation Impact Scope of Attack Disruption to Operations Threat Intel / APT Reliability Condition of Backups Long-Term Sustainability of BCP Does anyone have any examples of a graphical decision tree or matrix that incorporates some of these types of elements? This is to include in a playbook.

I'm looking for an open-source IGA solution, has anyone had any experience they can share?