Over the last ten years, cyber crime has become one of the most significant threats to organisations around the world, regardless of the industry. Cyber security entails protecting your organisation from attacks where possible, while cyber resilience prepares the organisation in case the worst happens. This Critical Issue, the first in a series of quick guides to key challenges facing today's organisations, proposes a fully-structured approach to achieving both cyber security and cyber resilience. This approach is controlled at each stage, through governance, management and implementation of cyber security and cyber resilience, using internationally recognised standards based on best practice.