Compromise Discovery Assessment

Do you know if cyber attackers are hiding in your network?

Cyber criminals continue to infiltrate organisations’ networks undetected and gain unauthorised access to critical data. Advanced attackers can remain on their systems for years without ever being detected. Research from PwC’s Global State of Information Security Survey (GSISS) 2018 shows that more than a quarter of businesses don't know how many cyber attacks they've had and a third don't know how they happened.

Organisations need to proactively look for and identify any threats in their IT estate and respond quickly and appropriately before they damage their business.

What is PwC’s Compromise Discovery Assessment?

Our service identifies evidence of malicious activity within your IT estate. We analyse data pulled from the endpoints, network and external threat sources, augmented by our industry-leading proprietary threat intelligence platform, to gain unique insight into signs of historic or active compromises in your environment and provide clear, pragmatic advice for remediation.

Unlike traditional methods of threat detection, our experts apply a layer of advanced threat hunting and analysis techniques to filter through the false positives and identify malicious behaviours within your environment to detect actual intrusions.

This service is particularly relevant to organisations that:

  • Are concerned they may have been breached but don’t see any signs of compromise
  • Are looking to proactively hunt for indicators of compromise and advanced threats
  • Are needing to assess potential intrusions as a result of organisational transformation (merger and acquisition, supply chain etc.)
  • Have a recently-appointed CISO that is looking to assess their organisation’s security posture

What do you get?

Dedicated and experienced ‘threat hunters’

Proactively searching for advanced threats within your your IT estate that may evade traditional security controls.

View more

Threat detection coverage of both endpoint and network

Gain end-to-end visibility across the IT environment, augmented by our in-house threat intelligence platform.

View more

Industry-leading technology layered with our advanced threat detection rulesets

Providing correlated visibility across the attack chain and insight into attacker techniques.

View more

Direct access to investigative and forensic specialists

Vast experience of spotting hidden intrusions. If required, an optional follow-up engagement can be arranged to contain and remediate the threat and advise on a tailored incident response roadmap and strategy.

View more

Executive and technical report

Includines prioritised tactical, operational and strategic recommendations so that corrective action can be taken.

View more


What are the benefits?

  • Identification of previously unknown, hidden threat activity allows for effective remediation before it causes further damage 
  • Holistic view of threat activity and ‘bad behaviours’ from legitimate users across the IT estate (applying insight from network, endpoint, internal and external threat intelligence)
  • Helps you to gain at state of confidence in your security infrastructure
  • Deep investigative and forensic analysis translated into business risk advice
  • Insight into critical areas of vulnerability to help inform the right security and risk management strategy

Why PwC?

  • Our service includes specialised threat hunting techniques to search for targeted and advanced threats that may evade traditional security controls
  • Our teams have deep experience in this field, having spent over a decade hunting advanced threats on customer networks
  • Our specialists have an in-depth understanding of how attackers compromise networks, with the ability to identify and exploit vulnerabilities across global estates
  • Our cyber security team is supported by a large pool of qualified and experienced data privacy and protection lawyers and eDiscovery and data analysts, providing you with comprehensive security and regulatory assurance 
  • We are business risk advisors recognised by industry accreditations for our cyber security expertise:
    - Certified by CREST, the industry body for technical cyber security
    - Certified by the UK National Cyber Security Centre
    - Certified by the US National Cyber Security Agency
  • Rated by Forrester Wave as the global “leader” in Digital Forensics and Incident Response service providers

Contact us

Oliver Smith

Threat Detection & Response - Director, PwC United Kingdom

Tel: +44 (0)7718 339 124

Paul Bottomley

Endpoint Threat Detection and Response Lead, PwC United Kingdom

Tel: +44 (0)7808 799134