Cyber Crisis Response

Cyber Crisis Response
What To Do And Say When Faced With A Cyber Crisis

A Cyber crisis such as a data breach can seriously harm a company’s reputation and competitiveness. This workshop teaches what to do before one occurs and what to do and say if a crisis such as a breach should happen.

This workshop will help delegates to develop a cyber crisis response and crisis communication plan and will provide not only useful crisis management insight but practical steps and tips on writing such a plan.

Cyber threats and incidents can come in many shapes and sizes. For instance, just imagine if your point-of-sale- system should go down at month-end due to a technical malfunction or glitch?

What would that do for customer confidence and trust? And, what should a company do and say when faced by a Cyber Crisis?

It means that as a company you have to be ready to respond to, mitigate, act and communicate if such an unfortunate event might occur.

Stakeholders such as customers, the media and the general public are increasingly aware of the lack of cyber security best practices and the consequences suffered by those affected by data breaches. Many have had problems with money being stolen, identity theft and company systems being hacked.

When a breach does occur, it is vital that clients are reassured. For customers and the uninitiated, being the victim of identity theft or losing money as a result of a breach can be traumatic. Customers will need reassurance that their interests are safeguarded.

A cyber crisis such as a data breach can thus seriously harm a company’s reputation and competitiveness.

Furthermore, the EU’s new General Data Protection Regulation (GDPR) requires that companies notify authorities of any breaches within 72 hours. In South Africa, the POPI Act brings its own mandatory requirements.

This increased time pressure means companies should have crisis response and communication strategy in place before an incident occurs.

Such a response plan should include awareness exercises, mitigation strategies and even elements of risk communication strategies prior to such an incident. 

In the event of a breach, stakeholders will ask what the company did to safeguard data and whether the “reasonable man’ principle was applied.

Companies will need to be ready to show what they have done to prevent, and mitigate the crisis and will need to communicate in a transparent manner with all stakeholders.

International research and experience show that when there is an incident, crisis communication is key to reduce reputational damages. In order to mitigate the impact a cyber attack can have on a company’s reputation and operational ability; cyber incident response and communication plans need to be in place.

Companies therefore have to think “hard and deep” about what they will do to prevent and how they will communicate when such an incident occurs.

Read the post “Cyber Crises? Come on – We Have An Antivirus solution, It’s More than Enough” for more background and insight.

Register Now

Who should attend

This is a one-day workshop for:

  • Business Continuity managers
  • Cyber Security professionals
  • Professional IT service providers
  • Internal Crisis team members
  • Internal PR and Communication personnel
  • PR and MARCOM consultants

What you will learn

  • What is a cyber incident?
  • What is a Data Breach? Types of breaches
  • Unpacking the danger of a Cyber attack – Reputational Risk and Loss of Trust
  • Lessons learned from International & Local Examples (BA, Liberty and International Hacking examples). Examples of actual data breaches and how they were handled, the good and the bad.
  • Steps to ensure organizational readiness for a cyber attack – The Importance of Effective Proactive Preparation (Preventing Errors, Improving Response times and Decision-making)
  • Incident Reporting, Management, and Response – Why Time is of the essence once a breach occurs
  • Mandatory Reporting Requirements
  • How to Write a Real-time Crisis Communication Plan inc. Scenario Planning, Message Development, Plan Writing tips, etc.
  • Cyber Incident Crisis Communication Tips – (A Formal, scenario-specific cyber incident response plan will give the crisis team the ability to think clearly, make good decisions and communicate succinctly)
  • Who should be part of the Cyber Crisis Team – Roles and Responsibilities
  • The Importance of Real-time monitoring (Failure to monitor customer and media sentiment can be dangerous. The company will have to monitor social media, the media, and crucially contact between stakeholders and the company).
  • Best Practice Standards – Training, Customer Education and related protocols
  • How to Test Your Defences – Notification and Activation, Tabletop exercises and Real-time Simulations (A tabletop exercise should involve all key internal teams – crisis communications/PR, IT/Cyber response, business continuity, customer relations, executive management, call center, legal, HR, etc. All relevant external partners and service providers should be invited and included, such as PR consultants, cyber security vendors, lawyers, and insurance providers, among others. The plan should be worked through until all kinks are smoothed out and errors identified and addressed).
  • How to Rebuild Trust After a Breach occurred

Katlego Mothoa: “The training was very valuable, clear and easy to understand. Please email me more training that you may be conducting in the future would like to attend more”.

When and Where

DATE: TBA. Also access the Training Calendar Page for new dates and venues.

VENUE: Hotel Apollo Conferencing Centre, 158 Bram Fischer Drive, Ferndale, Johannesburg

TIME: 8.30 am to 4.30 pm

Come and join us for a worthwhile learning experience, and benchmark and tweak your reputation building and crisis communication plans.

Payment (Terms and Conditions apply)

  • EARLY BIRD REGISTRATION: R2650 excl. VAT – payable by the latest x.
  • R 3950 excl. VAT payable not later than x.
  • R 2550 excl. VAT per delegate for three delegates or more from the same business unit payable within 5 days of registration.

Fees include lunch, refreshments and documentation. Final bookings and payments close x.

How to Register

  1. Download a registration form and complete it to secure your seat.
  2. Please send completed registration form and Terms and Conditions acceptance to reputationeducation@icon.co.za
  3. Upon the completion and receipt of the registration form, a confirmation letter and tax invoice will be sent.
  4. Payment must be received PRIOR to attendance. Payment is due within 2 days of issued invoice unless otherwise arranged.
  5. By signing and returning the registration form you are accepting the terms and conditions. (Registration is only confirmed upon receipt of payment.)
  6. Please fax through payment notification to 0866 129 566 or via email to secure attendance.

If you are interested in attending, please note that places are on a first come, first-served reserved basis as only a limited number of participants are accommodated each time.

To register: Call 011 475 3515 or e-mail for a registration form or register now by downloading the registration form.

SEATS ARE LIMITED –BOOK NOW  

Bookings will be confirmed on a first-come, first-served basis, as seating is restricted to 20 delegates so as to ensure maximum interaction and participation.