This website uses cookies. View our cookie policy
United Kingdom
Select regional store:
Cyber Incident Response (CIR) Management

Cyber Incident Response Management

SKU: 4905
Format: Consultancy

Develop a CIR capability around three key stages: prepare, respond and follow-up. This service is based on the bestpractice cyber security incident response framework developed by CREST and ISO/IEC 27035. (G-Cloud service ID: 1607 9563 1889 722.)

Enquire about this service now




CIR management is a growing requirement of many security standards and compliance regulations because it is an essential component of an organisation’s cyber resilience, i.e. its business continuity and disaster recovery plans.

CIR Management from IT Governance will allow your organisation’s technical staff to readily identify and categorise network incidents, determine their level of gravity, contain the incident if required, report it, take corrective action, recover systems and resume operations, analyse it and develop a framework for continual improvement.



  • Reduces overall organisational and cyber risk.
  • Improves cyber resilience.
  • Lower cyber insurance premiums.
  • Provides assurance to prospective clients and investors, and the board of directors.
  • Minimal disruption to the business.
  • Expert advice from a leading CREST-certified consultancy.
  • Tailored to your organisational needs and business requirements.
  • Reduces incident impact and response times.
  • Additional services such as penetration testing can also be provided.


A CIR management plan can:

  • Identify a suspected cyber security incident;
  • Analyse all available information relating to the potential cyber security incident;
  • Uncover what actually happened;
  • Establish how it happened;
  • Identify what systems, networks and information assets have been compromised;
  • Ascertain what information has been stolen, deleted, corrupted or disclosed to unauthorised parties; and
  • Determine the potential business impact of the cyber security incident


Who is it for?

The CIR Management service is designed for organisations of any size that would like to instil confidence in their clients by assuring them of the organisation’s ability to respond to any type of cyber incident and to remediate them promptly and effectively.

Incident response is also required of organisations that want to achieve compliance with the following industry standards and regulations:

  • ISO 27001 – information security management system (ISMS)
  • ISO 27035 – security incident management
  • ISO 22301 – business continuity management system (BCMS)
  • GDPR – General Data Protection Regulation
  • PCI DSS – Payment Card Industry Data Security Standard

Public- and private-sector organisations have mandatory contractual requirements for reporting incidents that involve personal data to the Information Commissioner’s Office (ICO).


Scope of work

Incident response management can help your organisation reduce the risk of information security incidents. A proper incident response framework will allow you to identify breaches, prevent access to data stores, prevent malware infection, remediate threats and control your risk and exposure during an incident.

The purpose of CIR is to manage and respond to unexpected, disruptive events with the objective of controlling the impact within acceptable levels.

  • Incidents can be technical, such as attacks mounted on the network via viruses, denial of service (DoS) and system intrusion, or they can be the result of mistakes, accidents, and system or process failure.
  • Even if they use state-of-the-art technology, organisations will never be able to stay ahead of cyber criminals and the threats they pose, but they can prepare an effective response system that will allow them to minimise the impact of any incident.
  • An organisation’s ability to detect, react and respond to security incidents in a fast, planned and coordinated fashion is of paramount importance to the organisation’s resilience and success.
  • Although it is important for organisations to have preventive measures in place to avoid security incidents, it is equally important that there is a robust, practised response plan should an incident occur.
  • The objective of incident response is to suitably prepare for the cyber attacks that organisations are likely to face.


Additional resources

To find out more about this service, download our free brochures:


How we can help you

IT Governance is a world leader in the field of international management standards, IT governance, cyber security, CIR management, risk management and compliance.

Our professional services team has a wealth of consultancy skills and technical expertise. Our multi-disciplinary knowledge and experience mean we can help you achieve your project objectives wherever you are in the world.

We have a complete set of products and services, including information and advice, penetration testing, consultancy, audits, books, toolkits, training and staff awareness for IT governance, risk management, cyber security, compliance and data protection. This means you can get whatever you need for your project in one place.

For a CIR management plan, we:

  • Review your current IT status, perform a gap analysis, and recommend suitable controls and technical measures;
  • Advise you on the development of a suitable incident response process;
  • Design a bespoke incident response plan;
  • Develop an incident response team;
  • Provide training for the incident response team;
  • Create bespoke incident scenarios based on real-world experience;
  • Assist and advise on scenario testing; and
  • Advise on a suitable framework for continual improvement.


IT Governance will provide all the support you need

Get started with your incident response planning strategy today with support from IT Governance.

You will get access to an experienced, dedicated technical team that can carry out sophisticated cyber security incident investigations quickly and effectively.

With our help you will be able to identify, detect and contain incidents faster. Our service will provide you with a detailed action plan and personnel training to mitigate the impact of an incident and restore services in a trusted and timely manner.

Prepare now for an effective CIR plan and minimise the impact of a breach should it occur. Contact us using one of the methods below.


Customer Reviews

(0# of Ratings:)