By Dominic Cockram
Cyber attacks will continue to threaten business operations in 2016, with many commentators claiming that this year we could see ‘the big one’.
Organisations are increasingly focused on understanding the impacts a cyber attack could have on their operations and reputation. Many are now using cyber scenarios in their crisis exercises to test and validate their assumptions on how they would respond and reflect on the unique challenges a cyber attack could bring.
The exercises range from fully immersive simulations, that develop and build competence and confidence, by allowing a realistic replication of the pressures, issues and uncertainty, to desktop sessions, that provide leadership teams and broader management the opportunity to familiarise themselves with the nuances of a cyber response such as the awkward language and reporting processes.
Having run a large number of cyber exercises over the last 18 months, I thought it would be useful to share some of the common lessons.
Posted in Crisis Communications, Crisis Leadership, Crisis Management, Cyber Resilience
- Tagged communicating in a cyber crisis, crisis communications, crisis management, crisis response, crisis simulation, crisis tips, cyber crisis, cyber crisis management, cyber resilience, cyber security, strategy
The story of the TalkTalk cyber crisis and the company’s response continues to unfold as we saw inevitable outrage over the week-end with stories galore of customers with “potentially hacked bank accounts” raising a whole new raft of rumours, heating the debate and breeding more noise about what might have happened and just how great the impacts may be.
The story was moved by the CEO (quite cleverly) to the broader focus of “cyber risk is a wider problem the UK needs to face up to and address” with calls for more Government support to tackle cyber crime. A fair appeal and one raised by me in my earlier blog – regulation and control or assurance in this domain is very much required – even though challenging to apply in a reasonable manner. Continue reading
Posted in Business Continuity, Case Studies, Crisis Communications, Crisis Lessons, Crisis Management, Crisis Management Exercises, Cyber Resilience, Reputation Risk, Resilience
- Tagged communicating in a cyber crisis, cyber, cyber attack, cyber crime, cyber crisis, cyber crisis management, cyber resilience, cyber risk, cyber security, data breach, talk talk, talk talk hack, Talktalk