The 8 Themes of IASME Cyber Baseline – Back Up and Restore

Jun 19, 2024 | IASME Cyber Baseline

What is this theme about?

Regularly backing up information, and having the ability to restore the backup, may be one of the most effective methods of protecting your business from the effects of accidental or malicious tampering, hardware failure, or ransomware.

In the event of a cyber incident, where data has been lost, deleted or encrypted, having a backup will help you recover to a point in time before the event happened.

It is recommended that you back up at least weekly, which means if something goes wrong, you may only lose up to a week’s worth of data. If losing a week’s data would be too costly, consider backing up your data on a daily basis.

IASME Cyber Baseline requires you to have one backup, though you may decide to increase your cyber resilience by keeping multiple backups.

Backing up to the cloud

Storing your data in the cloud does not guarantee that your data has been backed up. Many cloud services allow users to work on files locally and sync changes immediately to the cloud. In the event of a ransomware attack, the encrypted files are likely to sync as a change to the cloud storage copy as well. Check with your cloud service provider that your storage solution has versioning enabled and includes data recovery features.

Disconnect your backups from the internet and store in a different location.

It is important to protect backups so that they cannot be altered or deleted once created, especially whilst your backup mechanism is connected to your IT systems. When using USB devices for backup data, disconnect these devices when the backup has completed; it is important to store your backup data at a different secure location.

Test and restore

A backup that fails during a data restore process will not help you recover from data loss. You should carry out regular backup tests to ensure you can recover from data loss and regular restore tests should be carried out quarterly to verify the backup is usable.

It is recommended that you take these steps:

Back up all data and systems at least weekly
All backup data should be stored securely
Backup data must be clearly segregated from working and live data
Practise restoring from your backups to complete, operational capability at least quarterly

Search Blog

The 8 Themes of IASME Cyber Baseline – Back Up and Restore

19 Jun 2024

Cyber incident live-play exercises

18 Jun 2024

Ship Owners, Foreland Shipping and Managers, AW Ship Management certify their fleet of four vessels to IASME Maritime Cyber Baseline

17 Jun 2024

The 8 Themes of IASME Cyber Baseline – Technical Intrusion

7 Jun 2024

IASME create a new Team Lead Exam for Providers of Cyber Incident Exercising services

4 Jun 2024

The 8 Themes of IASME Cyber Baseline – Managing Access

23 May 2024

« Older Entries

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.

Necessary

Always Enabled

A list of the cookies that are required to make this site function, are given below:

Cookie	Type	Duration	Description
cookielawinfo-checkbox-analytics		1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-analytics	persistent	1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-necessary		1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary	persistent	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-non-necessary		1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non-necessary".
cookielawinfo-checkbox-non-necessary	persistent	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Non-necessary".
CookieLawInfoConsent		1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
geot_country		1 year 1 month 4 days	Used to define what country is attributed to you to aid showing the correct content.
PHPSESSID		session	This cookie is native to PHP applications. The cookie stores and identifies a user's unique session ID to manage user sessions on the website. The cookie is a session cookie and will be deleted when all the browser windows are closed.
viewed_cookie_policy		1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.

Non Necessary

A list of the non-necessary cookies can be seen below:

Cookie	Type	Duration	Description
__cfduid		1 month	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
__cfduid	persistent	1 month	The cookie is used by cdn services like CloudFare to identify individual clients behind a shared IP address and apply security settings on a per-client basis. It does not correspond to any user ID in the web application and does not store any personally identifiable information.
_ga		2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_ga	persistent	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag		1 minute	Used to throttle too many requests from being issued within a short time. This is part of the Google Analytics suite of services.
_gat_gtag	persistent	1 minute	Used to throttle too many requests from being issued within a short time. This is part of the Google Analytics suite of services.
_gid		1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.
_gid	persistent	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form.
_hjAbsoluteSessionInProgress	persistent	30 minutes	This cookie is used to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen	Session	1 year	This is set to identify a new user’s first session. It stores a true/false value, indicating whether this was the first time Hotjar saw this user. It is used by Recording filters to identify new user sessions.
_hjid	persistent	365 days	Hotjar cookie that is set when the customer first lands on a page with the Hotjar script. It is used to persist the Hotjar User ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID.
ajs_anonymous_id	persistent	365 days	This cookie is set by Segment as a randomly generated ID for anonymous users.

analytics

A list of the cookies used for analytics can be seen below:

Cookie	Duration	Description
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_gtag_UA_*	1 minute	Google Analytics sets this cookie to store a unique user ID.
_hjSession_*	30 minutes	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.
_hjSessionUser_*	1 year	Hotjar sets this cookie to ensure data from subsequent visits to the same site is attributed to the same user ID, which persists in the Hotjar User ID, which is unique to that site.

The 8 Themes of IASME Cyber Baseline – Back Up and Restore

Search Blog

Recent Posts

The 8 Themes of IASME Cyber Baseline – Back Up and Restore

Cyber incident live-play exercises

Ship Owners, Foreland Shipping and Managers, AW Ship Management certify their fleet of four vessels to IASME Maritime Cyber Baseline

The 8 Themes of IASME Cyber Baseline – Technical Intrusion

IASME create a new Team Lead Exam for Providers of Cyber Incident Exercising services

The 8 Themes of IASME Cyber Baseline – Managing Access

Cyber First

Living Wage

Cyber Scheme

National Cyber Awards 2022

Armed Forces Covenant

BSI