Skip to main content

Planning for a DDoS Attack

June 16, 2014

Last week several prominent DDoS (distributed denial of service) attacks were in the news, specifically targeting the popular note-taking app Evernote and the RSS reader Feedly. These attacks, along with others over the years, should serve as a call to attention that if an organization provides services to internet users, they must be prepared for a DDoS attack.

I speak with hundreds of CISOs a year, and most of them are not prepared in any way. The only ones that are prepared are those who have lived through a DDoS attack.

There are three things that your organization needs to consider when planning for a DDoS attack:

1. What is the value of your internet connections and the services provided by SaaS organizations? If your organization is a service provider, this is easy to calculate based on the transactions processed per second, minute, hour, day, etc. This is not as easy to calculate for services used by an organization such as Evernote. Sadly, most do not have a BIA/BCP (business impact analysis/business continuity planning) function to help with this calculation or identify services which are critical to an organization and wrap disaster recovery plans around them.

2. What defenses can your organization put in place? Again, this is easy if your organization is a service provider. However, we find more and more organizations are interested in trying to put some DDoS services in front of the SaaS they are leveraging to insulate themselves, or are reinvestigating their contracts and SLAs.

3. What does your incident response plan look like? Typically, incident response plans are good, but they are IT-centric and miss critical integrations with public affairs/media teams and legal. The best organizations have incident response plans and protection services they can leverage to ensure they are able to communicate with clients while a DDoS attack occurs.

Don’t wait until a DDoS attack strikes your organization. Be prepared with a plan to defend against the attack and lessen the impact to your company.


    James Robinson

By: James Robinson

Vice President, Third-Party Risk Management

See More

Related Blogs

March 22, 2018

Intelligence Bulletin – MinionGhost Reemerges

At approximately 9:30am EDT on 20 March 2018, hacktivist collective, MinionGhost, announced planned cyber attacks against unspecified Asian entities. ...

See Details

September 25, 2017

DDoS Threats: Are Your Third Parties Protecting You?

There’s evidence that ransomware may be evolving beyond holding data hostage. In recent news, DDoS attacks were used as a threat against organizations...

See Details

November 30, 2017

A Day in the Life of Optiv Cyber Security Superheroes: Peter H. Gregory

Peter H Gregory is very passionate about helping others---whether it’s helping clients develop their corporate security strategy or training the InfoS...

See Details

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.

Privacy Policy

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.


Join our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cyber security Events in your area.