Hands up if you had heard about Crowdstrike before 20 July. Keep them up if you knew that your organisation used one of their products.
I would be surprised if many Kiwi business managers or board directors still have their hands up, because the use of Crowdstrike isn’t a board decision or even a managerial one - it’s operational.
As many have learned this week, CrowdStrike is a company that helps protect computers and data from cyber threats. They offer a service called Falcon that combines antivirus, threat detection, and a team of experts who monitor for attacks 24/7.
The Crowdstrike system uses real-time data and intelligence to quickly identify and stop threats, helping organisations prevent security breaches. Its Falcon service was at the heart of the problem; that being, a routine update contained corrupted files that the widely used Microsoft Windows operating system relies on.
Such updates are a normal part of Falcon’s operation and occur several times a day in response to novel tactics, techniques, and procedures discovered by CrowdStrike. As of now, it’s not clear why the error occurred, but that will no doubt emerge in due course as the outage continues to be investigated.
Crowdstrike isn’t the only vendor in this space – there are many similar service providers, and they exist to mitigate a multitude of risks in the cyber and digital security space.
Whichever tool your organisation uses is an operational decision that is usually delegated to the CIO (if you’re large enough) or your managed service partner (if you’re not.)
As a manager or board member, you might get visibility of the operational tools the organisation you oversee uses, but it’s likely to be more informational than governance related.
However, as we found out on Friday, sometimes a small decision can have a big impact. It’s the impact of these decisions that managers and directors need to be aware of.
Tools like Falcon are a double-edged sword. If you don’t have them, you’re vulnerable to cyber security risks. If you do have them, you’re vulnerable to their release processes.
So, what should Kiwi business managers do? I’m not saying you should go on a witch hunt and ask for a list of all the tools your organisation is using. That’s not the best use of anyone’s time – especially when outages like this are the exception, not the norm.
Instead, you should be making sure you understand what impacts your organisation might experience should technology fail, so you can recover as fast as possible.
Recovery is important, because often the knock-on effect of being offline for three hours is worse than the actual outage – and that's where organisations need to be ensuring they are best protected.
What responsible managers or boards need to do now is maintain the appropriate level of oversight of their IT and ask these questions:
It’s easy to sit back when an IT outage affects your competitors. However, proactive and responsible management and governance should seize this opportunity to test their own resilience.
By understanding the tools in use, assessing the potential impacts of outages, and ensuring the right people, processes, and tools are in place, companies can better prepare to withstand and quickly recover from such incidents.
This proactive approach not only mitigates risks but also strengthens the overall security posture of the organisation.
While you don’t need to know all the technology products your organisation is using, you do need to know what impacts your organisation might experience if things go wrong.
Sometimes the knock on effect of being offline for 3 hours can be worse than the actual outage and that's where orgs need to be thinking.
28
How to manage technology’s impact and embrace its benefits
29
If more time is being given to external consultants than internal ideas, it might be.
30
It’s a bit of a cliché that your staff are your biggest asset. Of course, there’s truth in clichés - your staff are where ideas are tested a…
"One of Ant's strengths is relating to owners in a visionary sense and talking to people who are on the ground...[Ant has a] wide understanding of different systems, processes and applications and can articulate where we're going and what the possibilities are...working with Ant has changed the way we make decisions about IT structures and support systems."
We hired Ant to support us with an important project after he was highly recommended by colleagues. Ant was responsive, speedy, super-helpful and helped us to make key decisions. We appreciated his broad experience, and his ability to hold a high level strategic view alongside expert advice on details. We will definitely be consulting with Ant again and are happy to recommend him.
"We don’t need a full-time CTO [chief technology officer]. Ant knows enough about our business he can deliver it virtually. He can translate things for us. During project management, Ant came into his own... Ant gets his head round your business and [took his time] understanding our context. He was really clear about pausing on investment into the app...Ant's inquisitive, curious and approachable - he's very easy to work with."
"Ant was really quick to understand the business model and our processes and IT structures."
"Ant helped us at the early stages of Aerotruth helping us to plan our technical infrastructure and ensure we built a product that would scale. Ant was great to work with and we really valued his support and contribution to Aerotruth"
"No question has ever been too silly. Ant's been accommodating and helped me understand. I've valued that he understands the charitable sector really well. He can look through the experience that he has with larger organisations and what's the reality for a small and mighty charity where you don't have teams of people that can come in and project manage an IT project"
"Having Anthony was really valuable – to lean in on his skillset – and his connections. He was able to provide impartial advice about the different strengths [of the providers]. It was important that we undertook a good due diligence process. Having Anthony there meant we had impartial selection as well, which is very important to us and [something] other not-for-profits [could benefit from]."