Why every business needs offline plans to manage cyber risk and ensure continuity

20/10/25 Wavenet
Cyber Risk

Tony Beveridge, BC Sales Specialist at Wavenet.

Why offline plans still matter

In a world where every business process is digital, the latest advice from the National Cyber-Security Centre (NCSC) might sound almost quaint: keep a paper copy of your critical business plans. But before you dismiss it as old-fashioned, consider the stakes.

The UK is now experiencing an alarming average of four nationally significant cyber-attacks every week, according to the NCSC. That adds up to over 200 major incidents annually, double the number from just a few years ago1. These attacks aren’t hypothetical; they have real consequences for businesses and consumers alike. This year alone, hacks on major companies such as Marks and Spencer, The Co-op, and Jaguar Land Rover2 caused empty shelves and halted production lines, showing just how disruptive a cyber-attack can be.

As NCSC Chief Executive Richard Horne warns, organisations need to “have a plan for how they would continue to operate without their IT, and rebuild that IT at pace, were an attack to get through.” In other words, it’s no longer a question of if you’ll be targeted, but when3.

The reality of cyber risk

Here’s the uncomfortable truth: many businesses are woefully unprepared. Companies pour money into firewalls, antivirus software, and cloud security, but few ask the simple question: what happens when all of that fails? That’s where cyber risk awareness and resilience engineering comes in, and why the NCSC is recommending something radical: paper copies of critical plans.

Modern cyber criminals target an organisation’s infrastructure to cause maximum damage over a prolonged period. Having business continuity plans stored on your local infrastructure opens them up to the same threats as everything else, meaning you might not be able to get to them at the very moment you need them.


Shadow-Planner: making continuity plans accessible

A plan to address how your company will respond to a cyber attack, like all other aspects of operational resilience, needs to be planned, documented, and available. Clearly, if these plans sit on unavailable or compromised technology that is inaccessible due to the incident, they are of no use. That’s why our business continuity management planning software Shadow-Planner is such a game-changer. It can export plans to a physical copy while also providing a regularly updated download to your smart devices. With Shadow-Planner, you and key members of your organisation will always have incident management plans at hand, wherever you are, an essential element to cyber security resilience.

Having a third-party BCM software provider, where all critical business continuity, recovery plans, and emergency contact information are segregated from your own infrastructure, is a smart decision. An externally hosted solution makes it easier to access this critical information at the very time you most need it. The best solutions (like Shadow-Planner) should also include a mobile app, delivering plans directly to users and serving as a third line of defence against cyber risk.

 

The growing threat and why preparation matters

Some might see this advice as over-cautious. I see it as common sense. Digital systems are fragile, and hackers are relentless. Most attacks are financially motivated, but even a seemingly minor disruption can have huge consequences, as the UK has seen in healthcare and retail. The rise of domestic teenage hacking gangs alongside sophisticated international cyber-crime rings shows that no company is too small or too secure to ignore this cyber risk4

Good business continuity software isn’t a luxury; it’s a must in a technology-driven world! Bad things happen, but it’s how prepared you are and how you respond that makes the difference. Managing cyber risk isn’t just about technology; it’s about foresight, adaptability, and preparation. Sometimes, the most modern solution is the one you can hold in your hand.

 

Take action: make your plans accessible

Not so much, dust off your pens, but certainly print out your contingency plans. Keep them safe. Combine them with Shadow-Planner to ensure key plans and communications are always accessible. It may feel nostalgic, but it’s far from retro, it’s pragmatism. Businesses that ignore this advice risk more than inconvenience, they risk catastrophe.

 

About the author

tony-beveridge1.1

Tony Beveridge – BC Sales Specialist, Wavenet

Tony began his career as a Telecommunications Technician but has spent the past 40 years specialising in all aspects of Business Continuity. Over that time, he has helped the industry grow from its roots, from its early focus on mainframe IT recovery to its modern role as a vital component of organisational resilience and compliance. Tony has worked with companies around the world to ensure their critical business functions can continue, no matter what unexpected events or disruptions they face.

 

Get in touch with our team today — and protect not just your data, but your ability to deliver.

 

1 National Cyber-Security Centre (NCSC)

2https://www.bbc.co.uk/news/articles/ced61xv967lo#:~:text=Criminal%20hacks%20on%20Marks%20and,struggled%20without%20their%20computer%20systems

3 https://www.ncsc.gov.uk/collection/ncsc-annual-review-2025

4 https://www.bbc.co.uk/news/articles/c5ye8zj5l4jo

Ready to achieve resilience?

Book your free consultation today.

Talk to us

Backup & Recovery, business continuity, CyberGuard, Blogs, Vulnerability Management, Cyber Resilience, Backup, Disaster Recovery, Work Area Recovery, Purple Team Testing

Latest blogs

See all posts
IT failure
How to prepare for a major IT failure

When a major IT failure strikes, organisations don’t get a second chance to prepare. Decisions must be made quickly, and IT information needs to be trusted, accurate, and accessible. This is where business continuity (BC) software can play a crucial role in strengthening IT service continuity (ITSC). In this article we consider what you can do to prepare in advance of an IT failure occurring and then look at how BC software can help.

Read more
penetration testing
Common vulnerabilities found in penetration testing - how to fix them

You lock your front door at night - but what about your digital one? Every website, app, and online service you use is like a house with its own set of locks. Some are sturdy and well‑maintained, while others have loose hinges, missing keys, or windows left wide open.

Read more
Placeholder thumbnail
What is cloud computing and how it benefits businesses

If you stream films on Netflix or check your email from anywhere in the world, you’re already using the cloud. But for large enterprises, cloud computing is far more than consumer convenience - it’s the foundation for operational agility, cost optimisation, and long‑term resilience. Today, the cloud underpins digital transformation across every industry. It removes the limits of traditional on‑premises infrastructure, replacing them with scalable, secure, and cost‑efficient services delivered over the internet. So, what is cloud computing really? Think of it like a global utility grid Just as organisations don’t generate their own electricity, they no longer need to build and maintain vast IT estates to power their operations. Instead, they plug into a global network of hyperscale data centres and pay only for the capacity they consume. This model transforms IT from a capital‑intensive function into an agile, consumption‑based platform that can grow or shrink instantly with business demand. Demystifying “the cloud”: what it actually is Despite the name, the cloud isn’t ethereal. It’s built from thousands of enterprise‑grade servers housed in heavily protected data centres around the world. These provide: Always‑on global availability Enterprise‑grade physical security Redundant power, cooling and connectivity High‑performance compute and storage resources Instead of storing your data on a single device or server, the cloud stores information across these resilient environments, enabling global access, multi-layer redundancy, and seamless continuity. Reducing enterprise IT costs without compromising capability Historically, enterprises spent heavily on hardware refresh cycles, data centre space, maintenance, and large support teams. Cloud computing removes these constraints. With a cloud operating model, organisations can: Shift from CapEx to OpEx Subscribe to the compute, storage and applications you need - instead of owning hardware. Avoid hardware lifecycle management Infrastructure is continuously refreshed by the cloud provider. Optimise usage Pay only for what you consume, with autoscaling to manage peaks and troughs. Reduce hidden overheads Power, cooling, physical security, patching and maintenance are no longer your responsibility. For large organisations with complex estates, this delivers predictable budgeting and measurable savings. Resilience and data protection: your always‑on safety net Enterprise outages can halt business operations. Traditional on‑premises infrastructure creates single points of failure. Cloud architecture removes this risk with: Built‑in geo‑redundancy Automated backups Multi‑site replication High availability by design If a device is lost, a server fails, or a site experiences disruption, your systems and data remain secure and accessible. This ensures continuity, protects reputation, and reduces recovery time dramatically. Scalability at enterprise scale: power for any demand Scalability is essential for large organisations with fluctuating workloads or global operations. Cloud platforms automatically scale to handle: Seasonal or event‑driven spikes Large-scale data processing Rapid user onboarding Global expansion Capacity expands the moment it’s needed - and scales back down afterwards - allowing enterprises to stay agile and cost‑efficient. Enabling hybrid work and seamless collaboration Enterprise teams are now spread across regions, countries and time zones. Cloud‑based collaboration tools eliminate version control issues and data silos. With cloud productivity solutions: Teams work from a single source of truth Multiple users can co-edit in real time Permissions and governance are centrally managed Hybrid workers get the same consistent experience This dramatically improves operational efficiency and supports a modern, flexible workforce. The cloud isn’t the future - it's the enterprise advantage today For large organisations, the cloud delivers: Lower infrastructure costs Stronger resilience and security Rapid scalability Higher productivity and collaboration Simpler hybrid working Freedom from legacy limitations It’s not a future trend - it’s the foundation of modern business.

Read more
Placeholder thumbnail
Seven CEO priorities to cut cyber risk in 2026

Cyber risk in 2026: a core business issue, not just an IT problem The Global Cybersecurity Outlook 2026 report by the World Economic Forum highlights seven priorities CEOs should own:

Read more
PSTN Switch-off
What is the PSTN Switch-off? UK network modernisation explained

The PSTN switch-off marks a significant shift in telecommunications. It's a move from traditional landlines to digital solutions. This transition is set to transform how organisations communicate.

Read more
Placeholder thumbnail
BCM software: what it is and why you need it in 2026

Business disruption is no longer an exception - it is an operational reality. Cyber-attacks, supply chain failures, extreme weather and system outages now pose ongoing risks for organisations of every size.

Read more

Stay service-savvy

Get all the latest news and insights straight to your inbox.