SITUATION
A global life sciences conglomerate wanted to stress test its environment to ensure it was well-prepared with appropriate policies and procedures in the event of a cyber incident. FTI Cybersecurity was engaged to assist with creating and conducting a tailored cyber incident response simulation to evaluate response efforts and understand strengths and weaknesses.
OUR ROLE
FTI Cybersecurity constructed a scenario in which a threat actor stole the client’s sensitive data for ransom. FTI Cybersecurity experts guided the client through the scenario, considering how to navigate global data regulations, develop a plan of action, and implement a comprehensive strategy as a global conglomerate.
In an additional test scenario, FTI Cybersecurity walked the client through the investigative aspect of an incident, including how to determine next steps after identifying a cyber threat. This entailed deciding what information to disclose to executives and when, including whether to declare the event as an incident.
OUR IMPACT
The simulation included scenarios illustrating how the client manages both external and internal communications and negotiations with threat actors. This allowed the client to demonstrate existing policies and procedures, including protocols for engaging with threat actors, delineation of roles and responsibilities, and strategies for addressing incidents from a global perspective. FTI Cybersecurity meticulously documented the exercise, noting and identifying areas for improvement and weaknesses within the client’s incident response plan. Drawing from these observations, FTI Cybersecurity compiled a comprehensive list of considerations to enhance the client’s incident response capabilities and bolster their overall cybersecurity posture.