Crisis Management, Corporate Risk and Cyber

Crisis management is the process by which an organisation deals with an emergency, crisis or disaster that threatens to harm the organisation, its stakeholders or the general public

Executive and senior managers know the risks associated with their own business and business sectors, but often no one person or process identifies, mitigates and plans for resilience to reduce the harm or impact caused by those risks. ICS has experience in providing a holistic view across organisations by analysing the impact of interdependencies and competing functions.

Cyber-attack is currently rated as the number one risk for businesses and organisations and should attract a proportionate level of corporate attention to resilience. Responding to incidents of cyber security requires specific actions and advice, as well as technological knowledge.

ICS consultants have been running crisis management training and exercising programmes in the UK, Europe, and the US, including cyber-attack for many years. We work with industry specific technical, cyber security and IT managers to ensure an effective corporate response is developed and understood by those expected to manage incidents, including crisis communications.

We have experience in managing corporate risk and cyber security across the banking, insurance, leisure, power generation, nuclear, local and central government and manufacturing sectors. We will deliver:

  • A Cyber Incident Management playbook
  • Organisational business risk and impact assessments
  • Reputation management strategies
  • Effective integration of Business Continuity plans with Cyber security and Crisis Management plans
  • Command and leadership training
  • Post-incident recovery planning and management
  • Training, testing and exercising of Cyber security and Crisis Management plans

British Standard, BS 65000 (2014) defines “organisational resilience” as “ability of an organisation to anticipate, prepare for, and respond and adapt to incremental change and sudden disruptions in order to survive and prosper.”

All our solutions align to BS 65000:2014 ‘Guidance on Organisational Resilience’ and ISO 27001:2301 ‘Information Security Management’ systems as well as UK Government advice.