Incident response planning and exercises at affordable rates
Commercially aware and experienced in incident response
Incident response preparation & planning tailored to your needs
Cyber incident exercises developed specifically for your organisation
Businesses rely on an interconnected network of suppliers to help deliver their own products and services. An integrated supply chain brings competitive advantage but can also introduce security risks where suppliers have access to your systems, data, or premises.
Attackers are increasingly exploiting supply chain vulnerabilities to island hop to other targets, and data stored by suppliers is at risk if their own defences are immature. Visibility of your suppliers and management of supplier security risks is therefore becoming vital.
We will develop and facilitate a security incident response tabletop exercise according to your objectives. The exercise can be delivered for an executive, operational or IT audience and will be tailored to your organisation to make it realistic for attendees. The exercise can be stand-alone or delivered together with awareness training for participants.
Our specialists will review your current security incident capabilities against best practice, including ISO 27035 and NIST SP 800-61. We’ll consider the nature of your organisation including skills, resources, legal and regulatory obligations, systems, and data and provide ‘right sized’ recommendations for improvement.
We will work with your business stakeholders to improve how you respond to security incidents. This includes developing a suitable policy, incident response plan and incident response playbooks for key threats. We’ll develop all documents iteratively with your input and tailor them your resources and capabilities.
Following incident response improvement work, we can train your incident response team and other stakeholders on their roles and responsibilities and the requirements of the new plan and playbooks. We can also develop and facilitate tabletop exercises to help rehearse the new processes and build confidence within your team on how a real-world response would work.
We’ll gather information from you about your organisation such as details on your systems, response plans, stakeholders, customers, shareholders, likely threats and legal obligations – so that with your input, your scenario and escalations are tailored to meet your specific requirements.
We’ll also include social media and newspaper coverage mock-ups and prepare bespoke television news reports as shown in the following video.
Our cyber incident exercises use the scenarios agreed with you during the planning stage. We can deliver the exercise onsite at your location, or remotely if preferred.
We can deliver a single exercise, based on one longer scenario or break up the day into multiple shorter exercises based on different scenarios.
Onsite exercises can be combined with interactive workshops for attendees. These can cover related topics such as the types of cyber threats faced by your organisation.
When delivering the exercise, we’ll start with introductions, then move into the scenario and finish with a wrap-up discussion. See below for more on each stage.
Your consultant will be highly qualified and experienced in cyber incident response, information security and related fields.
We offer real-world advice and will support you fully throughout so you get the most out of your bespoke exercises.
Contact us now for a friendly, no-obligation discussion or to request more information about our cyber incident response planning services and exercises.Contact Us