All organisations need to be able to successfully respond to and recover from cyber attacks. This relies on being prepared and drawing on a broad range of organisational capabilities including technical cyber incident response and recovery, IT incident management, IT disaster recovery, business continuity, crisis management and operational resilience.
This capability is increasingly important as:
In this environment, it is essential that organisations have well-documented, understood, and exercised plans and processes; ready to respond when a cyber incident or crisis occurs and to quickly recover. These should encompass the entire organisation – from technical first responders to functional teams, business units and strategic decision makers.
There is a clearly defined response framework and supporting governance, clear ownership, pre-agreed decision-making authority and escalation pathways; all enabling rapid response when needed.
The response and recovery capability spans both business and technical concerns, drawing on broad cross-organisational capabilities; ensuring you have the right people engaged from the outset.
People, processes and tools are rehearsed and ready to respond when a cyber attack occurs; building a strong ‘muscle memory’ that can be quickly triggered.
Business as usual operations are quickly restored and lessons learned are identified and addressed to help prevent recurrence; enhancing overall operational resilience.
Our incident response and recovery team has a broad range of capabilities to be able to provide support across the prepare, respond and recover phases of a cyber crisis or incident.
“PwC demonstrated an exceptional ability to blend technical skill with executive-level communication.”
We can also provide on-demand support from our specialist cyber incident response team to prepare and manage your broader organisational response. This includes:
Our incident response retainers are available in three tiers. We pride ourselves in providing the highest level of service, regardless of the tier chosen. We apply what we believe to be three essential qualities across our incident response retainer tiers; fast, effective and expert.
Rated by Forrester as a leader in the Forrester Wave™: Digital Forensics and Incident Response service providers, Q3 2017.
We are one of only a few firms that are certified by the National Cyber Security Centre’ Cyber Incident Response (CIR) scheme to respond to sophisticated attacks on networks of national significance.
As well as a depth of technical knowledge, we understand the business, legal and regulatory context that underpins your operations.
We have provided digital forensics and incident response services in the UK since 1998.
Certified by CREST, the industry body for technical cyber security, to deliver cyber incident response services.