All organisations need to be able to successfully respond to and recover from cyber attacks. This relies on being prepared and drawing on a broad range of organisational capabilities including technical cyber incident response and recovery, IT incident management, IT disaster recovery, business continuity, crisis management and operational resilience.
This capability is increasingly important as:
In this environment, it is essential that organisations have well-documented, understood, and exercised plans and processes; ready to respond when a cyber incident or crisis occurs and to quickly recover. These should encompass the entire organisation – from technical first responders to functional teams, business units and strategic decision makers.
There is a clearly defined response framework and supporting governance, clear ownership, pre-agreed decision-making authority and escalation pathways; all enabling rapid response when needed.
The response and recovery capability spans both business and technical concerns, drawing on broad cross-organisational capabilities; ensuring you have the right people engaged from the outset.
People, processes and tools are rehearsed and ready to respond when a cyber attack occurs; building a strong ‘muscle memory’ that can be quickly triggered.
Business as usual operations are quickly restored and lessons learned are identified and addressed to help prevent recurrence; enhancing overall operational resilience.
Our incident response and recovery team has a broad range of capabilities to be able to provide support across the prepare, respond and recover phases of a cyber crisis or incident.
“PwC demonstrated an exceptional ability to blend technical skill with executive-level communication.”