Skip to Main Content
Cyber Essentials and Cyber Essentials Plus | Achieve certification first-time with IT Governance | Find out more
Cyber Incident Readiness Assessment

Cyber Incident Readiness Assessment

SKU: 5734
Authors: IT Governance
Format: Consultancy
Availability: Available now
  • A detailed gap analysis of how prepared your organisation is to identify and respond to a cyber incident.
  • Instils confidence in the business and key stakeholders that your organisation has addressed its gaps and has a solid plan in place, should an incident occur.
  • Receive expert advice on remediation tactics to address any weaknesses.

The Cyber Incident Readiness Assessment is provided by IT Governance’s sister company GRCI Law Limited, a specialist in data privacy, cyber security, and legal and compliance advisory services.

This service is currently being updated. Please contact us for more information.

e-learning training options
For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Preparation is key

Every year, cyber security incidents cause billions in damages to organisations.

This assessment provides an impartial and detailed review of your organisation’s cyber resilience capacity to identify, contain, mitigate and recover from a cyber incident. The review covers:

  • How your processes, policies and procedures contribute to your cyber incident response capabilities;
  • Whether key stakeholders of your business know how to report a suspected incident and what to do from there;
  • Who in your organisation is responsible in escalating, containing, remediating and recovering from an incident, and their roles and responsibilities throughout the process;
  • Which technologies are relevant throughout an incident’s lifecycle, such as preventive measures, monitoring technologies and response capabilities; and
  • Which physical controls may be affected by a cyber incident.

After the review, you will receive a detailed report with our findings, recommendations and guidance on remediation tactics, and a prioritised action plan.

Download the full service description

Key features:

 Independent assessment

We will conduct an impartial and incisive review of your organisation’s cyber incident response capabilities so that you can easily address any gaps and significantly reduce the impact of a cyber incident.


To examine your readiness of your organisation, we will look across a broad range of controls you have in place; from what your staff know about how to respond to an incident, to how vulnerable your physical controls are. This will ensure complete coverage of your assets, should an incident occur.

 Good practice

This service is based on a combination of the good-practice cyber incident response framework developed by CREST, and the international standard on incident management, ISO/IEC 27035.

 Expert guidance

Our dedicated cyber incident responder will be able to spot the weaknesses within your organisation and guide you through a prioritised action plan that instils confidence within your team, should an incident occur.

 Become cyber resilient

Bolster your cyber resilience so you know that you can withstand an attack and return to business as soon as possible.

Download the full service description


Why choose GRCI Law?

  • Unlike other organisations, GRCI Law is a specialist legal consultancy, which only advises on data protection, privacy and cyber security.
  • GRCI Law’s team of qualified lawyers and data protection officers has decades of experience in privacy and information/cyber security compliance programmes and personal data solutions for high-profile organisations.
  • GRCI Law takes a strategic approach to assessing and managing your data privacy needs, aligning standards and best practices with your operational and business requirements.
  • As GRCI Law is a sister company of IT Governance, you have direct access to cyber security specialist expertise, if needed.
  • The GRCI Law team has experience with global multinationals, international banks, investment firms and leading law firms, healthcare providers, world-leading educational institutions, the European Council, and UK law enforcement organisations.

Experienced cyber incident responder: Cliff Martin

Cliff Martin

Cliff Martin heads the cyber incident response service within GRCI Law.

He began his career teaching computer systems and network technologies in further and higher-education institutions.

Cliff then worked in the defence industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration.

His key qualifications include:

  • (ISC)² Certified Information Systems Security Professional (CISSP®)
  • SANS GIAC Certified Incident Handler (GCIH)
  • SANS Global Industrial Cyber Security Professional (GICSP)
  • BCS Certificate in Information Security Management Principles (CISMP)
  • IBITGQ Cyber Incident Response Management Foundation (CIRM F)

Cliff understands the complexity of cyber security incidents and their potential impact on an organisation, its users and/or customers.

Customer Reviews

This website uses cookies. View our cookie policy
WIN £100