Organizations are thinking about their cyber resilience. Here are five steps security teams should take.