Cyber Webinar SlidesV2.4-JD.pptx
jon drew
Created on September 18, 2024
Over 30 million people build interactive content in Genially.
Check out what others have designed:
AUSSTELLUNG STORYTELLING
Presentation
WOLF ACADEMY
Presentation
STAGE2- LEVEL1-MISSION 2: ANIMATION
Presentation
TANGRAM PRESENTATION
Presentation
VALENTINE'S DAY PRESENTATION
Presentation
HUMAN RIGHTS
Presentation
LIBRARIES LIBRARIANS
Presentation
Transcript
In Partnership with
Cyber Crisis Workshop You’ve been hacked – NOW WHAT?
‹#›
Give your knee-jerk reactions Aim to respond in under 20 seconds Your answers are anonymous This is a NO FAULT exercise
Making the most of this exercise Interaction is key
‹#›
- Walk you through the sequence of events of a cyber attack and their potential impact
- Test your reactions under pressure
- Understand the impact of the crisis on the org’s critical systems.
- Consider what decisions need to be taken and by whom.
- Raise awareness of what happens in the response and remediation phase.
- Explore the options and resources available to you should the worst happen
The aim of this activity
‹#›
You are the COO of GreenLife FoodsYou do NOT have any cyber insurance Your staff have NOT undertaken any cyber security training You do not have an Incident Response Plan to deal with a Cyber crisis Your team have no prior experience
Put your personal circumstances aside For the purpose of this exercise
‹#›
‹#›
All staff 'accidentally’ receive an email from HR with an attachment of the “yearly staff bonus”.
Day 1 An email to all staff
‹#›
Question 1 Do you open the attachment?
It’s decision time – You have 20 seconds please respond to the poll on your screens
‹#›
00:20
No
Yes
- All computer-controlled production machinery locked out. Costing you over £40K lost in revenue per day.
- Over 150 staff on the production line are standing idle.
- Ransomware demand of £250K
Day 2 Systems are locked down
‹#›
Assume the email has made it to all staff inboxes. Assume one or more people have opened the email and clicked on the attachment.
Day 1 An email to all staff
‹#›
Within a few hours of staff opening the email, all devices are locked. Rebooting the laptops brings the same error on screen.
Day 1 All devices have been locked
‹#›
Login
Reflecting on your own business You have 30 seconds please respond to the poll on your screens
‹#›
It’s decision time – You have 20 seconds please respond to the poll on your screens
‹#›
- IT unable to recover data and have involved external emergency IT forensics - £50k
- ICO deadline approaching
- Criminals leaked data via your social media
NEW POST
- Had to send production staff home
Day 3 Data has been leaked – the Cyber criminals mean business
‹#›
It’s decision time – You have 20 seconds please respond to the poll on your screens
‹#›
18 September 2024
Cyber Crisis Workshop
Marketing / PR
CEO Costs are stacking up – do we just pay!?
- CEO is questioning whether ransom payment would resolve the situation
- Staff posting about
- External crisis communications
- £100K of stock havebeen disposed of
- Journalists and key clients calling for updates
Day 4 People want answers!
‹#›
- News of your attack hits the headlines
- Order cancelled by significant client
- New hardware required costing a further £75K
Day 5 Clients begin cancelling orders
‹#›
18 September 2024
Cyber Crisis Workshop
It’s decision time – You have 20 seconds please respond to the poll on your screens
‹#›
18 September 2024
Cyber Crisis Workshop
No access yet – but we’re getting there. I’m hoping to be back online by next week!
HEAD OF IT
We’ve had to send people home every day this week!
HR
Marketing / PR
- Total production loss surpasses £300k
- Total recovery costs surpassing
- IT work still rebuilding but we're making progress – but still no access
Day 6 Costs mount up
‹#›
18 September 2024
Cyber Crisis Workshop
- IT break-through. Success in uploading some of the data
- Crisis PR support has kicked in - feeding facts to interested 3rd parties with daily updates
- The production line is back online and employees are back at their stations
Week 2 We’re back online
‹#›
18 September 2024
Cyber Crisis Workshop
It’s decision time – You have 20 seconds please respond to the poll on your screens
‹#›
18 September 2024
Cyber Crisis Workshop
Creating Incidence Response Plan What does a fit for purpose plan include?
‹#›
18 September 2024
Cyber Crisis Workshop
The value of Cyber Insurance What will insurance do for my company?
‹#›
18 September 2024
Cyber Crisis Workshop
Reflecting on your own business Ask yourself these questions:
‹#›
18 September 2024
Cyber Crisis Workshop
Any Questions? Please drop these in the Q&A box below
‹#›
18 September 2024
Cyber Crisis Workshop
Thank you! For further information please feel free to reach out to either of us.
Amar Singh CEO – Cyber Management Alliance amar@cm-alliance.com
Matthew Clark Cyber Director – Partners& matthew.clark@partnersand.com
‹#›
18 September 2024
Cyber Crisis Workshop