A cyber crisis cannot be prevented; sooner or later, your organization will also fall victim to an attack. However, you can be better or worse prepared for such a situation, and as with other tangible emergencies, such as a fire, the best approach is training and practice. Making adequate decisions is of great importance to minimize the impact of a crisis. The more trained you are in making such decisions, the less damage your organization will suffer.
Why Practicing is Necessary for Every Organization
The supply chain of an average organization consists of numerous links, including suppliers, manufacturers, logistics service providers, and distributors. Each of these links can form a potential weak spot for a cyber attack with an impact on the entire chain. Weak security measures, insufficient training programs for employees, and insecure data transfer can open the door for hackers to gain access to critical systems and carry out malicious actions.
It is therefore important to prepare yourself for a cyber attack. Especially now that we are increasingly dependent on (digital) chain partners. Because even if you have your security in order, that doesn’t mean the same applies to your chain partners. What do you do if one of your partners falls victim and this impacts your service delivery? The number of cyber attacks aimed at supply chains has increased in recent years. And, not only the number of cyber incidents in the chain but also the impact of these attacks is rising significantly.
Prevention is therefore not possible, but through practice, you can limit the impact of cyber incidents on your organization.
But how do you actually approach an exercise within your organization or, even better, with your chain partners?
Don’t panic! CCRC has compiled a handbook that provides the guidelines for a cyber crisis response exercise within your organization, in the chain, within the sector, or even across sectors. It is written to help the Chief Information Security Officer (CISO) and anyone else responsible for security in developing crisis exercises with the right support from the board. This handbook was created with input from the following experts:
- Kelvin Rorive, Crisis Manager | CISO
- Kees Verkade, Head of Departmental Coordination Center Crisis Management JenV
- Sanne Maasakkers, Technical Exercise Leader (National) Cyber Crisis Exercise
- Pascal Renckens, Resilience Specialist
- Wilko Bulte, Chief Security Officer
If you want to get started with cyber practicing, you can first indicate your interest in the exclusive CCRC handbook. Do you want to get your hands on the handbook to start practicing or take your exercises to the next level? Then leave your details now via this link: ccrc.nl/geenpaniek/interesse.