Skip to Main Content
Cyber Essentials and Cyber Essentials Plus | Achieve certification first-time with IT Governance | Find out more
Cyber Incident Response Retainer

Cyber Incident Response Retainer

SKU: 5730
Format: Consultancy
Availability: Now available
  • Ongoing incident response support to ensure your organisation can identify, contain, eradicate, and recover from a cyber security incident.
  • Significantly reduce the impact of an incident and the time to recovery.
  • Mitigate potential fines and legal repercussions from a breach.

The Cyber Incident Response Retainer service is provided by IT Governance’s sister company GRCI Law Limited, a specialist in data privacy, cyber security, and legal and compliance advisory services.

This service is currently being updated. Please contact us for more information.

e-learning training options
For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service


An experienced incident response specialist will work with you to ensure that your organisation has appropriate policies, processes, procedures and systems in place to respond to a cyber incident. This service includes:

  • Emergency support
    During a cyber incident, our consultancy team will be on hand to provide support and guidance to ensure that you are able to identify and contain the incident quickly and without having a significant impact on your operations.
  • Readiness assessment
    As the threat landscape changes, so too must your cyber incident response capability. Our consultants will provide an annual review of your cyber incident response readiness to ensure that your organisation is prepared to respond to incidents when they occur.
  • Tabletop exercises
    Our interactive annual tabletop exercises will be tailored for your organisation and to the latest threats. The exercises are designed to test your organisation’s response to cyber incidents in a safe and engaging environment.
  • Post-incident review
    Our consultants will work with you to review, analyse and enhance your cyber incident response capability based on recent incidents that your organisation has faced.

This service is based on industry good practice, and specifically the CREST incident response framework.

Download the full service description

Key features

 Expert guidance

An experienced incident response expert will advise on the best use of your resources and the actions required so that your organisation is ready to respond to an incident.

 Specialist team

Our specialist team has extensive cyber security management expertise, both in the UK and globally.

 In-depth understanding

We have an in-depth understanding of incident response and appreciate the realities of conducting business in stressful circumstances. We can help to reduce this stress and minimise the impact of a cyber security incident

Why IT Governance

Why choose GRCI Law?

  • Unlike other organisations, GRCI Law is a specialist legal consultancy, which only advises on data protection, privacy and cyber security.
  • GRCI Law’s team of qualified lawyers and data protection officers has decades of experience in privacy and information/cyber security compliance programmes and personal data solutions for high-profile organisations.
  • GRCI Law takes a strategic approach to assessing and managing your data privacy needs, aligning standards and best practices with your operational and business requirements.
  • As GRCI Law is a sister company of IT Governance, you have direct access to cyber security specialist expertise, if needed.
  • The GRCI Law team has experience with global multinationals, international banks, investment firms and leading law firms, healthcare providers, world-leading educational institutions, the European Council, and UK law enforcement organisations.

Experienced cyber incident responder: Cliff Martin

Cliff Martin

Cliff Martin heads the cyber incident response service within GRCI Law.

He began his career teaching computer systems and network technologies in further and higher-education institutions.

Cliff then worked in the defence industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration.

His key qualifications include:

  • (ISC)² Certified Information Systems Security Professional (CISSP®)
  • SANS GIAC Certified Incident Handler (GCIH)
  • SANS Global Industrial Cyber Security Professional (GICSP)
  • BCS Certificate in Information Security Management Principles (CISMP)
  • IBITGQ Cyber Incident Response Management Foundation (CIRM F)

Cliff understands the complexity of cyber security incidents and their potential impact on an organisation, its users and/or customers.

Customer Reviews

This website uses cookies. View our cookie policy
WIN £100