Develop a Cyber Incident Response and Crisis Communication Plan

6 November - Hotel Apollo, Randburg, Johannesburg

EARLY BIRD REGISTRATION – Register and Pay before 3 October and receive a copy of a Crisis Capability Toolkit worth over R9500. This toolkit includes questionnaires, checklists, tip sheets, templates and copy examples of various types of crisis plans.

Recent years have seen a significant number of cyber related incidents affecting companies such as the recent data breach at BA (British Airways) and locally the data breach at Liberty Life.

Stakeholders such as customers, the media and the general public are increasingly aware of the lack of cyber security best practises and the consequences suffered by those affected by data breaches. Many have had problems with money being stolen, identity theft and company systems being hacked.

When a breach do occur, it is vital that clients are reassured. For customers and the uninitiated, being the victim of identity theft or losing money as a result of a breach can be traumatic. Customers will need reassurance that their interests are safeguarded.

Companies will need to also consider specialised training for call centre staff and frontline employees to deal with angry and upset customers.

A data breach can thus seriously harm a company’s reputation and competitiveness.

Furthermore, the EU’s new General Data Protection Regulation (GDPR) requires that companies notify authorities of any breaches within 72 hours. This increased time pressure means companies should have crisis response and communication strategy in place before an incident occurs. In South Africa, the POPI Act brings its own mandatory requirements.

Such a response plan should include awareness exercises, mitigation strategies and even elements of risk communication strategies prior to such an incident. In the event of a breach, stakeholders will ask what the company did to safeguard data and whether the “reasonable man’ principle was applied.

International research and experience shows that when there is an incident, crisis communication is key to reduce reputational damages. In order to mitigate the impact a cyber attack can have on a company’s reputation and operational ability; a cyber incident response and communication plan needs to be in place.

Companies therefore have to think “hard and deep” about what they will do to prevent and and how they will communicate when such an incident occurs.

Not only should companies have the resources to put sufficient measures in place to protect stakeholders, but these measures should include training of staff, customer education programs and other relevant strategies.

This workshop will help delegates to develop a cyber incident response and crisis communication plan, and will provide not only guidance but practical steps and tips on writing such a plan.

Who should attend

This is a one-day workshop for:

  • Business Continuity managers
  • Cyber Security professionals
  • Professional IT service providers
  • Internal Crisis team members
  • Internal PR and Communication personnel
  • PR and MARCOM consultants

What you will learn

  • What is a cyber incident?
  • Unpacking the danger of a Cyber attack – Reputational Risk and Loss of Trust
  • Lessons learnt from International & Local Examples (BA, Liberty and International Hacking examples). Examples of actual data breaches and how they were handled, the good and the bad.
  • Steps to ensure organisational readiness for a cyber attack – The Importance of Effective Proactive Preparation (Preventing Errors, Improving Response times and Decision-making)
  • Incident Reporting, Management and Response – Why Time is of the essence once a breach occur
  • Mandatory Reporting Requirements
  • How to Write a Real -time Crisis Communication Plan inc. Scenario Planning, Message Development, Plan Writing tips etc.
  • Cyber Incident Crisis Communication Tips – (A Formal, scenario-specific cyber incident response plan will give the crisis team the ability to think clearly, make good decisions and communicate succinctly)
  • Crisis Team Members – Roles and Responsibilities
  • The Importance of Real-time monitoring (Failure to monitor customer and media sentiment can be dangerous. The company will have to monitor social media, the media, and crucially contact between stakeholders and the company).
  • Best Practice Standards – Training, Customer Education and related protocols
  • Plan Testing – Notification and Activation, Tabletop exercises and Real-time Simulations (A tabletop exercise should involve all key internal teams – crisis communications/PR, IT/Cyber response, business continuity, customer relations, executive management, call centre, legal, HR, etc. All relevant external partners and service providers should be invited and included, such as PR consultants, cyber security vendors, lawyers, and insurance providers, among others. The plan should be worked through until all kinks are smoothed out and errors identified and addressed).
  • How to Rebuild Trust after a Breach

Delegates will be provided with ample documentation as well as links to many relevant resources, that will enable them to develop and write a workable crisis plan.

When and Where

DATE: 6 November  2018. Also access the Training Calendar Page for new dates and venues.

VENUE: Hotel Apollo Conferencing Centre, 158 Bram Fischer Drive, Ferndale, Johannesburg

TIME: 8.30 am to 4.30 pm

Come and join us for a worthwhile learning experience, and benchmark and tweak your reputation building and crisis communication plans.

Payment (Terms and Conditions apply)

  • EARLY BIRD REGISTRATION: R2750 exc. VAT – payable by latest Friday 28 September
  • R 3950 exc. VAT payable not later than Friday 2 November
  • R 2550 exc. VAT per delegate for three delegates or more from the same business unit

Fees include lunch, refreshments and documentation. Final bookings and payments close Friday 2 November 2018.

How to Register

  1. Email for a registration form for completion and to secure your seat.
  2. Please complete the registration form and Terms and Conditions acceptance and forward it to
  3. Upon the completion and receipt of the registration form, a confirmation letter and tax invoice will be sent.
  4. Payment must be received PRIOR to attendance. Payment is due within 2 days of issued invoice unless otherwise arranged.
  5. By signing and returning the registration form you are accepting the terms and conditions. (Registration is only confirmed upon receipt of payment.)
  6. Please fax through payment notification to 0866 129 566 or via email to secure attendance.

If you are interested in attending, please note that places are on a first come, first-served reserved basis as only a limited number of participants are accommodated each time.

To register: Call 011 475 3515 or e-mail for a registration form or register now by downloading the registration form.


Bookings will be confirmed on a first come, first served basis, as seating is restricted to 15 delegates so as to ensure maximum interaction and participation.