May 31, 2013
While most enterprise risk managers are accustomed to addressing regulatory
compliance, data integrity and data privacy within an IT risk management
framework, many have not fully accounted for IT availability as it relates to business
continuity. Even risk managers who do consider IT availability may focus only
on operational and environmental threats (e.g., human error, fires and floods)
while overlooking distributed denial of service (DDoS) attacks, which are one of
the leading causes of IT-related business downtime.
Given the probability and potential impact of DDoS attacks, and compared to the cost of other downtimerelated risk mitigation solutions, DDoS threat mitigation may be one of the easiest and most cost-effective tactics for minimizing financial risk associated with IT-related downtime.