Incident Response Planning and Exercise Testing
Our cyber security specialists provide incident response plans and testing to help businesses uplift their capability to respond to a cyber security incident or data breach. We steer and streamline your organisation’s response to enable you to act promptly, efficiently, and in a coordinated manner during a security incident to minimise damage.
The MyEmpire Group difference
"We’re big enough to support all manner of businesses, from ma and pa’s to enterprise, but small enough to still obsess over detail."
We don’t obsess over detail to the point of paralysis, but we do take great pride in delivering exceptional work. And it’s not just because we get a thrill receiving elated client feedback, although that’s something we all share in common. Primarily it’s because we genuinely care about building cyber security systems that protect businesses. That means really learning your business and your people so we can develop incident response plans suited to you, not a close-enough template pulled from a file. That’s what makes us different; we only feel satisfied when we know a job’s been done right.
Our People
Our cyber security specialists are a mixture of seasoned veterans, many with 30+ years’ experience in IT, management and security. We also have young faces on the team, our rising stars–those whose talents we recognised early and chose to invest in.
Beyond being experts in their fields, our people share a few things in common, a result of how we hire. Prior to any skills being tested in an interview, we look for personable people. Authentic, honest people who are passionate about their field and good communicators. In other words, we look for people who light up when they talk about their line of work. People whose passion is contagious. Only candidates who meet this criteria are taken through the typical interview steps where we probe skills and work history.
Leadership Team
Alex Woerndle
HEAD OF OPERATIONS
(CO-FOUNDER & DIRECTOR)
Alex is an experienced director, IT consultant and infosec professional. He provides security management and leadership to a range of organisations from start-ups through to governments and ASX50 listed enterprises. He has also served over 10 years in voluntary roles as a Non-Executive Director of the Australian Information Security Association,.au Domain Administration Ltd and the Australian Conservation Foundation’s Finance, Audit and Risk Committee.
Carl Woerndle
HEAD OF SALES AND MARKETING
(CO-FOUNDER & DIRECTOR)
Carl has more than three decades’ experience in IT, security and business leadership. Prior to MyEmpire Group, he and Alex built DistributeIT which held approx. 10% market share of .com.au domains. As well as a business owner and manager, Carl has worked as a Cyber Security Advisor consultant for Deloitte. He is a regular keynote speaker on cyber security.
Chris Self
HEAD OF SERVICE DELIVERY
Chris is a highly experienced information security principal. He has worked as a senior cyber security consultant for KPMG, CQR Consulting (now part of CyberCX) and Deloitte. Prior to starting with MyEmpire Group, he was the Information Security Manager at Adelaide Airport where he led a full rebuild of the airport’s cyber security processes and infrastructure. Chris holds a master’s in information systems security and a number of information security certifications, including CISSP and CRISC.
What is an Incident Response Plan?
An incident response plan better prepares an organisation for managing different types of cyber threats. The goal is to minimise the impact of a cyber incident to protect sensitive data and limit disruptions to business continuity.
The incident response plan outlines your organisation’s procedures to guide the response during a security or data breach. This enables your business to respond quickly and effectively to an incident and return to business-as-usual as quickly as possible.
Why get an Incident Response Plan?
Know how to respond
We’ll outline the exact procedures to follow in the event of different cyber incidents to ensure you respond in a timely, consistent, and appropriate manner.
Give leaders an overview
An incident response plan provides business leaders and stakeholders with clarity on how to manage varying cyber security incidents.
Limit damage caused
Minimise the damage caused by an incident by improving the actions you take to detect, contain, and recover from an incident.
Boost team confidence
Incident response planning prepares staff to better handle the pressure a cyber incident can create because they know exactly what to do and when.
Comply with regulations
An incident response plan also helps you meet compliance obligations with data protection and privacy regulations when handling a security incident.
Ready to mature your cyber security?
What is an Incident Response Tabletop Exercise?
Once you have an incident response plan it’s essential to put it to the test and refine it to ensure efficiency and reliability. This is where tabletop exercises come in.
An incident response tabletop exercise is a simulation we use to evaluate your organisation’s response to a hypothetical cyber incident, such as a data breach, without the need for significant resources and without risk to your business. We typically perform these exercises with executives and board members.
Tabletop exercises allow an organisation to identify gaps in knowledge, communication and coordination. By getting actual stakeholders involved, testing exercises help people in your organisation better understand their roles and responsibilities so they can refine their strategies and enhance their overall preparedness for a real-life event.
Some examples of common incident response tabletop exercises we run include simulating:
- Data theft from an external attacker
- Ransomware attacks
- Attacks against intellectual property
- Compromised user or malicious insider scenarios
- Loss of employee or customer information
- Loss of physical data or assets
- Disruptive incidents impacting operational abilities across the business (business continuity scenarios).