The need to control and contain a data security cyber-attack is not dissimilar from measures to prevent and/or contain a food safety incident. Minimizing data security risk (cyber-attack) is about knowing the event is likely to occur and taking steps accordingly. Taking a holistic, technology-first strategy can mitigate data risk and cyber liability by containing an attack and limiting the damage that occurs.