Managing and preparing for cyber incidents - first course run

Posted on 12 September

On the 7 September 2017 Charlie ran what he belives to be the first "Managing and preparing for cyber incidents" public course run anywhere. The course was run as a public course by Business Continuity Training, PlanB Consulting's sister company.

The course covered the following subjects:

Subject Area

Details

Introductions

Introductions

Module 1 - Cyber incident landscape and threats

  • Number of cyber case studies
  • What are the different types of cyber threats?
  • Who are the threat actors?
  • What are the threat vectors
  • Cyber incident impacts
  • Regulatory framework and organisations involved in cyber response
  • What different (and the same) about cyber incidents compared with other crisis events.

Break

 

Module 2 - Prepare

 

  • Understating your organisations vulnerability and level of preparedness
  • Reviewing and developing your cyber policy and guidance
  • Developing a cyber playbook
  • Incident escalation
  • Developing or adding to your existing crisis management plan
  • Cyber insurance and choosing the right cyber technical partner

Lunch

 

Module 3 - Response

  • Recognising a cyber incident
  • Managing a cyber incident – react – respond - resolve
  • Reporting to regulatory bodies
  • Ransomware, pay or not to pay?
  • Managing your organisation communications with customers, stakeholders and the media
  • Working with IT and specialist contractors
  • Cyber incidents and the law

Break

 

Module 4 – Exercise your cyber incident plan

  • Different types of exercises
  • Simulating the threat
  • Making exercise realistic
  • Hints and tips for successful exercises

Course review

 

 

There was good feedback including:

"The course was good and I learnt alot from the day, the best part of the course was the discussions and debates during the exercises, i feel like this could have been a two day course as the discussions with other professionals and the course tutor raised a lot of really key questions of which i'm sure there could have been more with more time and more mock exercises."