Crisis management: Prepare, respond, recover services

Why is it important to be prepared for a crisis?

The world as we know it today, is an uncertain place. The “Global Megatrends”; demographic changes, shift in economic power, accelerating urbanization, the depletion of the earth’s natural resources and a rapidly evolving technological environment challenge our perceptions of the world, and require us to alter the way we think and act. Furthermore, a rapidly evolving technological environment affects organizations today, more than ever. With progress comes increased risk, especially concerning the digital terrain, where cyber-attacks are becoming increasingly common.

Organizations unprepared to manage the consequences of a crisis stand to suffer great financial, operational, and reputational loss. The impacts of incorrectly managing a crisis situation can potentially be more damaging than the actual crisis event.

Business leaders have to acknowledge these new threats, as well as gain an understanding of the potential severity of these risks. Through due preparation, and by placing an emphasis on rehearsals and test runs, organizations are able to develop a comprehensive response strategy which goes beyond standardized technical processes – which alone do not cover all aspects of risk mitigation.

Prepare

Crisis framework review: review of the end-to-end framework, governance, controls and procedures of the organization with industry wide best practices and ISO frameworks as a reference.
Cyber response plans and playbooks: developing crisis management plans and scenario-specific scripts in order to support the technical- and management teams with the business-wide response to cyber and GDPR breach related incidents.
Cyber crisis training: design and delivery of training sessions, varying from basic discussion-based exercises to fully customized crisis simulations, including post simulation debrief. Trainings focus on strategic response of top management, as well as technical responses of cross-team subject matter experts.
Red teaming: vulnerability assessment and penetration tests across a range of technologies – including mobile, web and embedded (IoT) devices.

Respond

Live support to technical teams, senior management and executive level members during a crisis:

Cyber and GDPR incident-response expertise including forensic investigations
Support of response and recover teams
Providing specialist advice on key considerations, strategy and decision-making
Expert advice on response strategy and decision-making

Recover

Root cause analysis
Forensic investigation
Crisis response evaluation and analysis
Critical decision-making procedure development and stakeholder communication strategy advice

Our approach

With the experts of our Crisis Leadership Team, organizations can reassure their clients, community and stakeholders that they are able to better prepare, respond and recover from crises, by effectively implementing crisis plans and executing rehearsal activities.