The secret to managing a cyber crisis

Just as things started to cool off around the WannaCry attack and businesses started to operate normally again, IT professionals were thrown back into disarray with the NotPetya malware attack.

NotPetya was responsible for knocking companies like Maersk, AP Moller-Maersm, Reckitt Benckiser, Fed Ex, and WPP into critical damage control mode. For the organisations that were lucky enough to avoid falling victim to these attacks, it is a moment to quickly breathe a sigh of relief and ask yourself, “Are you as prepared as you can be for the next WannaCry or NotPetya attack that will inevitably take place in the near future?”

Be prepared

Having an up-to-date security program, a detailed process to manage any vulnerabilities, and a completed incidence response plan, are all necessary and acceptable ways to build up confidence in a cyber security plan. Perhaps even the CEO and board of directors have been briefed on the current major ransomware risks that are flooding the market.

It is important to remember, being prepared is one thing, but how an IT professional actually handles themselves while in the middle of a cybersecurity crisis is completely different. It is safe to assume that cyber security professionals cannot be fully prepared for an attack, unless they have already dealt with managing emotions in the middle of a serious crisis.

By working on boosting cross-functional communication prior to being under the pressure of a breach, IT teams can be that much closer to keeping their cool while everything around them seems to be going up in flames.

Handling a high level breach like NotPetya, can be very chaotic and seem like a blur to even the best cyber security professional. Even the best prepared incident response plans can run off track when emotions come in to play, causing people to deviate from the initial plan.

Often stakeholders outside the immediate circle who are needing to deflect cyber threats, can cause more damage. They try to take control of a situation outside of their corporate jurisdiction and oppose important operational down time. These quick actions and assumptions can result in public misstatement.

Remaining level headed during early stages of a cyber-attack is far easier said than done. Here are five quick tips for boosting cross-functional business communication prior to an attack so you can keep your cool when everyone around you has lost theirs.

1.            Define Your Stakeholders

On a normal day you might have a great relationship built up with your supervisor and the people you directly report with. However, when a security breach is on the cards, the company is depending on you. Security leaders become risk professionals and your job is simply not just a security program manager.

You will be in a much better position if you build a strong relationship across the board with compliance, legal, operational risk and line functions now, rather than when everything is hitting the fan. It would probably be worth your time to touch base with marketing, HR, finance and procurement as well. Transparency can be a huge asset down the line in times of crisis. The last thing you will want during a crisis is a bunch of people you do not know, bombarding you while you are under the pump.