ID.RA-04.161

Has your organization conducted a systems interdependency analysis to identify and mitigate potential cascading failures across interconnected systems?

Explanation

Cascading failures occur when the failure of one system component triggers failures in dependent systems, potentially causing widespread outages or security breaches. This analysis should identify critical dependencies between systems, evaluate how failures might propagate, and document mitigation strategies to contain failures before they affect multiple systems. Organizations with complex infrastructures are particularly vulnerable to these types of failures, especially when systems share resources, authentication mechanisms, or data flows. Evidence of fulfillment could include a systems dependency map or matrix, a formal impact analysis document, contingency plans that address cascading scenarios, or test results from simulated failure exercises that demonstrate containment capabilities.

Implementation Example

Account for the potential impacts of cascading failures for systems of systems

ID: ID.RA-04.161

Context

Function: ID: IDENTIFY
Category: ID.RA: Risk Assessment
Sub-Category: Potential impacts and likelihoods of threats exploiting vulnerabilities are identified and recorded

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub