Real-time crisis – Real-time support for EXECUTIVE COMMITTEES, CISOS, DPO and operational teams

Context

A leading international player in the design and distribution of outdoor and high mountain sports equipment has contacted Alcyconie as a matter of urgency following a fraud alert issued by one of its strategic suppliers, based on the other side of the planet.

This alert reported a Business Email Compromise (BEC), raising fears of a compromise of electronic exchanges and sensitive data, as well as fraudulent uses likely to have significant impacts on the information system, supplier relations, regulatory compliance and the company’s brand image, in a context of highly internationalized activity.

Objectifs

• Supporting the organization in the management of a complex and evolving cyber crisis
• Accurately qualify the nature of the incident and trace all associated events
• Advise the CISO and support the DPO on the first actions to be taken, both technically, organizationally and legally
• Securing the Executive Committee’s decision-making in a context of high uncertainty and potential media pressure
• Define and implement a communication strategy adapted to each target audience
• Ensuring regulatory compliance, particularly with regard to CNIL obligations and associated legal requirements

Mission Description

• Immediate mobilization of Alcyconie teams in 24/7 mode as soon as the incident is detected
• Support for incident qualification and chronological reconstruction of events to consolidate a clear and shared view of the situation
• Operational support for the CISO and the DPO in defining the first measures to secure the information system and limit the impact
• Working in close collaboration with the PRIS (Incident Response Provider) for smooth and effective crisis management
• Legal and regulatory support, including support for reporting to the CNIL and conducting the associated procedures
• Assistance in writing crisis communications and defining the communication strategy by target: key suppliers, internal users, technical communication driven by the CISO, in French and English
• Contribution to the consolidation of the evidentiary file with a view to possible further action

Challenges and specificities

• Strong international dimension of the organization and its ecosystem of partners
• Dependence on a chain of critical suppliers spread across multiple geographies
• The need to reconcile speed of action, regulatory requirements and control of communication
• Increased brand awareness, in an industry exposed to high public visibility

Alcyconie’s added value expertise

• Immediate availability and continuous 24/7 support to inform strategic decisions in an emergency context
• Ability to compare the orientations taken by internal teams with independent and specialized expertise in cyber crisis management
• Global approach integrating technical, legal, regulatory and communication dimensions
• Secure incident response, both operationally and in terms of compliance and corporate reputation
• Provision of a structuring framework allowing the organization to remain in control of the situation despite the uncertainty and pressure related to the crisis