Resilience
Resilience—a word that's been increasingly thrown around in cybersecurity. But what is resilience, really? Sure, we could rely on the dictionary definition, but when a word gets applied to so many contexts, its meaning evolves, especially once the marketeers get hold of it!
Here’s my take on resilience in cybersecurity:
"Resilience is the ability of a business to dynamically adapt to unforeseen, adverse circumstances while maintaining critical operations—confidentiality, availability, and integrity—and the capacity to swiftly recover from disruptions."
But here’s the question: How do you ensure business resilience before it's tested by events beyond your control?
While it can very often feel like a baptism of fire, the reality is that everything that led you to that point was also giving you opportunities. Opportunities to prepare, to fortify, and to plan. This concept of resilience has taken on a deeply personal meaning for me as I’ve watched my daughter face her own unpredictable challenge: alopecia.
Matilda, just three years old at the time, started losing patches of her hair. At first, we hoped it was nothing serious. But the hair loss continued. Medical consultations led to a diagnosis—alopecia areata, an autoimmune condition with no cure or guaranteed treatment. And even with that diagnosis, the future remained uncertain. Would it remain patchy? Would it spread? Would it develop into alopecia universalis? We had no answers, only possibilities.
We did what parents do—we tried to shield her, carefully arranging her hair, securing headbands so that she really didn’t notice the worst of it, buying baseball caps, as she slowly lost more hair. At her preschool, her friends didn’t really notice either. Her hair loss happened gradually enough that no one questioned it. And when it reached the point where we had to cut off what little was left, Matilda, at age four, took it in her stride. She wasn't fazed.
But by the time she turned five, something shifted. Her sense of self was developing, and she began to recognise her difference. Adults and children did give her a second glance. There were whispers and pointed fingers. She knew she was different to the Disney princesses that she loves to watch on the TV. Of course, we supported her, reassured her that her value came from within, and helped her find small silver linings (like not needing to wash or brush her hair!), positive examples and role models to help her understand she wasn’t alone and that “different” is the best thing in the world to be. When she started primary school, she did it without a wig, so that there would be no "secret" for some imagined, heartless kid to "expose".
And she remained fiercely Matilda, she embodied resilience in its purest form. And this weekend, when she finally got her first wig, her joy was unmistakable. Watching her repeat “I have hair” with wonder in her voice and light in her eyes, I realised just how much she had quietly endured.
But the most profound lesson came after. We went out to celebrate, and within five minutes of arriving at the restaurant, Matilda took off her wig to play with other kids—as herself.
And that’s when it hit me: Resilience isn’t about the layers you build around something to protect it. It’s about the inherent strength within that thing—the core ability to endure and adapt.
So, how do you build resilience in cybersecurity—or anywhere in life?
Well, having the right technical tools is of course important, but a hammer is worthless, if you ain’t got that swing!
Maintain perspective: Avoid overreacting. Use the time you’re given wisely.
Choose your response: While you can’t control what happens, you control how you react.
Embrace uncertainty: Accept change and evolution but plan ahead, build your threat model.
Prepare for challenges: Focus on constructive ways to tackle obstacles, and model potential failures.
Conquer fear: Take small, manageable steps to overcoming what might seem like overwhelming challenges.
Focus on solutions: When problems arise, take practical steps to address and anticipate them, rather than dwelling on them.
Find humor: Use laughter, love, teamwork, and joy as a way to relieve stress and lighten the load.
Have an amazing partner: You don't have to face these things alone. Whether it's your life partner or the team you build, lift each other up. Continually.
Matilda’s journey has taught me that true resilience is far more than just weathering the storm. It’s about recognizing your strength, adapting, and moving forward with grace—even when the road is unpredictable. Just as in cybersecurity, resilience is not only about surviving but thriving, despite the challenges.
Leader in Cyber Security | Life Long Learner | Connector | Champion for Women in Tech
2moFiercely Matilda ❤️
Former head of Police National Cyber Crime Unit, Senior Cyber Crime Advisor PwC and Keynote speaker
2moA beautiful read and wonderful post, thank you 👍
Co-founder of Sphere | Head of Global Marketing | Mentor | Networker |
2moWhen you stand back and take a breath, real life teaches us so much. GO Matilda, you sound like you could teach the worlds leaders a thing or two 🌸 🌸🌸
President @ Forescout Federal | Comply to Connect | Agentless IP Control and Orchestration | Fed100 award 2022 |
2moI love Matilda and I don’t even know her. Your description of her resilience explains so much about what resilience really is to me because I think in terms of backups, digital cloning, etc. I was wrong. Thanks for helping me understand. Seriously I get the point and I get what Matilda herself is doing too. Thanks!
Chief Information Security Officer
2moGreat lessons to learn from Matilda.Many thanks for sharing Rik Ferguson.Great post!