The critical role for business continuity during a severe cyber-attack
For the second in our series of thought leadership events we are dedicating the entire proceedings to cyber security. In particular, the role of risk and business continuity leaders in both preparing for and responding to a cyber-attack on their organisations.
This is a big topic with many facets and is worthy of your full attention. During the previous event in March a full house of 70+ guests heard from IBM’s Robin Gaddum on the crucial contribution that business continuity can bring to planning for, and responding to, a cyber-attack. This session follows on from that theme and delivers in-depth analysis and recommendations from three deeply involved speakers.
The first task is to know your enemy and Nicolas Reys, Head of Control Risks’ Cyber Threat Intelligence practice, will guide us through the current global cyber threat landscape. Next Drew Gibson, Head of the Cyber Resilience team at EY, will take us through the emerging new model of an ‘ecosystem’ response in the aftermath of a catastrophic cyber-attack. Finally, Dr Ruth Massie, Senior Lecturer at Cranfield University, will provide key findings from her research into effective communication with non-technical senior management around the issue of cyber security. How best to present the relevant information in order to secure the buy in that risk and business continuity leaders need.
Where & When
London Bridge Street
London SE1 9SG
10:00am – 12 noon, Tuesday 26 June
Full details and directions will be sent out on registration.
PLEASE NOTE: due to unprecedented interest all seventy places for this event are now taken. Please continue to register your details if you wish to be offered a place should one become free – a small number of cancellations are likely. You will also be given the option to receive copies of speakers’ materials after the event.
Head of Cyber Threat Intelligence Practice | Control Risks
Nicolas leads Control Risks’ global cyber threat intelligence practice, part of the organisation’s broader cyber security department. Nicolas’s team specialises in the provision of strategic, operational and tactical cyber threat intelligence to public and private sector organisations, and he personally leads and delivers complex cyber security projects. During his session Nicolas will describe the recent evolution of the cyber threat landscape, and how the growing incidence of operationally disruptive cyber-attacks poses a challenge to all organisations.
Head of Cyber Resilience | EY UK & Ireland
Through his leadership role at EY, Drew has supported numerous organisations in enhancing their cyber resilience response capabilities. Over this time he has come to the view that while the traditional concept of a recovery time/point objective is valid for lesser incidents it does not provide the mental rigour required to plan for catastrophic events such as the total destruction of an organisation’s data. Drew’s talk will expand on this view. It will be based on his experiences working with organisations to overcome catastrophic cyber incidents and maintain their businesses despite the loss of critical/all data. It will propose a new model for taking an ‘ecosystem approach’ to business continuity.
Senior Lecturer in Cyber Governance | Cranfield University
Ruth has 15 years’ experience in both the practical and academic aspects of resilience. Her PhD is in corporate governance, titled Allocating Effort: Risk and Complexity in Board Directors’ Engagement with Information. Ruth will be sharing insights from her doctorate plus her ongoing research at Cranfield, and will so cast light on how non-technical senior executives engage with information such as that surrounding cyber security. These insights can be invaluable for business continuity and risk leaders seeking to build the case for their own specialist roles in the preparation for, and response to, cyber-attacks.
|Start Time||Item Description|
|9:20am||Registration and Coffee|
|10:00am||Nicolas Reys, Control Risks
Know your enemy – understand the global cyber threat landscape
|10:40am||Drew Gibson, EY
A new ‘ecosystem’ approach – business continuity in response to massive data loss following a cyber-attack
|11:20am||Dr Ruth Massie, Cranfield University
Secure action and support – communicating with senior non-technical management in a language they will understand and act upon
|12:00pm||End of Speaker Presentations|
|12:15pm||Question the speakers (optional panel session)|
|12:45pm||Finger Buffet Lunch (for those attending both morning presentations and afternoon software workshop)|
Continuity Logic has been at the forefront of business continuity management (BCM) software since 2006. The company’s software is deployed with some of the world’s largest corporations and leading brands, supporting often highly sophisticated requirements. It is also deployed with a wide range of mid-sized organisations who want a more immediate ‘out-of-the-box’ solution for their needs. Both see our software as a way to future-proof their investment of both time and money through delivering not only capability for today’s requirements but also for tomorrow’s possibilities.
An effective business continuity program gathers and has access to a trove of corporate data, all of which taken together has the potential to offer an array of insights into risk and operational management. Leading practitioners have started to embrace this and, by delivering on the potential of this data-driven approach, have accelerated their value to their organisations. Continuity Logic provides a core structure and the analytical tools with which to maximise this capability. On-demand reports, drill down dashboards, geo-data and what-if analysis all contribute to an unrivalled ability to deliver value to the business.
Most BCM solutions have failed to deliver on this and end up as a centralised repository used by a select few. Continuity Logic addresses this through two primary mechanisms. First, we have implemented our GuideMe approach which literally takes the user step-by-step through the items they need to complete. Second, we provide a level of customisability (see Customisation on Demand) which means that every aspect of the solution can reflect your own organisation’s processes where required. So the solution looks familiar while fitting with the business flow and structures of even the most complex organisations. This provides an unmatched level of usability with which to deliver a step change around resilience.
Clients who want a quick return on investment tend to start with one of our out-of-the-box templates. These provide different approaches to a BCM program and allow the user to select that which most closely matches their needs. But the key is that these clients are not then constrained by their initial decisions. As they learn over time and wish to add further data items, or maybe adjust the plan layout, the process is simple. On the other hand, users who have precise and exacting requirements are equally well catered for. These are typically larger, more complex organisations that have learned over time, and often extensive experience, that one specific BCM program structure is essential for their success. Continuity Logic can deliver exactly what they want and, as importantly, without any software code amendments or additions.
Continuity Logic Software Workshop
For those who are interested to see the capability of Continuity Logic’s business continuity software product in an open forum, this will be held from 1:30pm to 3:30pm (following the buffet lunch for those also attending the morning session). There will be an initial overview of the software followed by an open session where participants will be free to pose any particular questions or use case scenarios.