Surviving Ransomware: How to Guarantee a Clean Recovery After a Breach | ResOps

Having a backup and recovery plan is a great start, but in the era of advanced ransomware and AI-driven lateral movement, it might not be enough . In this episode, Ashish sits down with Chris Bevil, Principal, Cyber Resilience and AI at Commvault (and former CISO), to discuss why the traditional methods of data recovery are failing . Chris shares a story of an organization that took 284 days to recover from a ransomware attack, only to be hit by the exact same group six months later because their restored backups contained dormant malware backdoors . Learn how to shift your mindset from standard IT recovery to "ResOps”, a holistic discipline of cyber resilience. We dive into the importance of indelible, air-gapped backups, why you must establish a Minimum Viable Product (MVP) for bringing your business back online, and how "Clean Rooms" can guarantee your restored data won’t trigger a secondary breach . Questions asked: 00:00 Introduction 02:20 Chris's Background: From "Recovering CISO" to Commvault 03:30 Why Traditional Backup and Recovery Strategies Are Failing 06:00 The 284-Day Incident: A Ransomware Horror Story (Conti Group) 08:30 The Minimum Viable Recovery: Don't Bring the Bad Guys Back 09:30 Shifting the Board Conversation from Tech Specs to Business Impact 10:30 What is ResOps? (Resilience Operations) 13:30 The Importance of Chaos Testing in Tabletop Exercises 16:30 Why Identity is the First Pillar of Cyber Recovery 17:30 Building a "Resilience First" Architecture (Clean Rooms & Air Gaps) 19:30 How AI is Impacting the Speed of Attackers and Defenders 22:00 Metrics for the Board: Mean Time to Clean Recovery 23:30 Fun Questions: Crocodile and Kangaroo Jerky Tasting 25:20 Hobbies & Family: Golf and 31 Years of Marriage 26:30 Favorite Restaurant: The Cheesecake Factory -------------------------------------------------------------------------------- 📱Cloud Security Podcast Social Media📱 _____________________________________ 🛜 Website: https://cloudsecuritypodcast.tv/ 🧑🏾‍💻 Cloud Security Bootcamp - https://www.cloudsecuritybootcamp.com/ ✉️ Cloud Security Newsletter - https://www.cloudsecuritynewsletter.com/ Twitter:   / cloudsecpod   LinkedIn:   / cloud-security-podcast   #cloudsecurity