When thinking about ransomware, history dictates that an attack will happen and remediation will be required. The defining point will be how much damage the attack causes, financially and otherwise. At a rudimentary level, organizations should be concerned with the protection of all business-critical information as well as the ability to detect potential ransomware threats and ensure a quick, automated recovery of an entire business application, if needed. This progression—a simple, three-step framework—supports the protect, detect and recover components of an organization’s overall cybersecurity strategy.