Subscribe to the Business Resilience DECODED podcast – from DRJ and Asfalis Advisors – on your favorite podcast app. New episodes every Thursday.

Cybersecurity is a buzzword, and an important one at that. But are your company’s cyber security policies being followed? Are operations and procedures in place to ensure your company is protected in an attack? In this episode, Vanessa shares her lessons learned from recently conducting a cybersecurity audit and what you can take away and implement from her experience.

Sign up for our Four Corners newsletter for opportunities to connect, access to exclusive content, bonus interviews, and more at

Some key takeaways from this episode include:

  • Make sure you’re aware of gaps in cybersecurity liability insurance. We uncovered that our partner had $15 million in cyber assets that were not covered by insurance. Determine what monetary value of risk you’re comfortable with for what’s not covered.
  • Perform an assessment first, and then an audit. The assessment will provide a high-level look of how things are going, and an audit is a much more detailed investigation of risks. The assessment will help you prepare for the audit.
  • If you’re preparing to bring in a third party provider to conduct a cybersecurity audit, make sure you have all the right people at the table from your organization. This includes your IT team, legal team, and operations teams.
  • A third party provider will sample a segment of your workforce to see if there are any cyber security issues with how your employees are storing or accessing data. We found several vulnerabilities that posed huge risks that the IT team was not aware of, and they were able to take steps to address those vulnerabilities immediately.
  • Without a business continuity management program, your cybersecurity efforts will be rendered ineffective. You need teams in place to ensure that business operations and reputation management are happening while your data is being held hostage or another cyber security disaster presents itself.

Disaster Recovery Journal:

Asfalis Advisors:

Connect with the podcast!

Vanessa Mathews, host

Vanessa Mathews is the founder and chief resilience officer of Asfalis Advisors, where they are focused on protecting the legacy of the leaders they serve through business resilience. Before becoming an entrepreneur, Mathews developed global crisis management and business continuity programs for government and private sector organizations to include Lowe’s Companies, Gulfstream Aerospace, and the Department of Homeland Security.

Jon Seals, producer

Jon Seals is the editor in chief at Disaster Recovery Journal, the leading magazine/event in business continuity. Seals is an award-winning journalist with a background in publication design, business media, content management, sports journalism, social media, and podcasting.

Improving Your Business Continuity Without Breaking the Bank
The latest in disaster recovery and ransomware protection is of the utmost importance to include in today’s IT strategies for...
What is Power Management? And Why Does It Matter?
How proper power management can cut costs and add peace of mind Peace of mind is something we’re all striving...
How Emergency Managers in the Electric Industry Prepare for and React to Hurricanes
The role of emergency managers within electric utility companies is a relatively new position which has taken on more responsibility...
We Need to Talk About the Silos in Business Resilience
Subscribe to the Business Resilience DECODED podcast – from DRJ and Asfalis Advisors – on your favorite podcast app. New...