From updating crisis management procedures to full simulation exercises, OPFOR Intelligence supports your cyber crisis preparation. And when thunder strikes, we take up the crisis lead and stand by your crisis cell, linking with technical experts.
Objective: integrate the specifics of the cyber element into existing crisis management
procedures. Define a realistic and coherent resiliency plan. Prepare and tool-up for the incident, so when the day come, you can deliver the adequate response.
Objective: create and run multidisciplinary crisis exercises, either table-top or fully simulated, from a half-day to several days. Fully simulate your infrastructure to test people and procedures against a realistic Red Team deploying state-of-the Art techniques. Communicate and improve.
Objective: take back control. With the help of a dedicated crisis lead, coordinate the various third-party technical teams, from forensics to pentesting to OSINT. Manage the investigation, control internal and external communication. Make informed decisions, working toward a proper crisis endgame.
Bridging the cultures of cybersecurity and physical security, leveraging tools from business intelligence, information management and communication, we are well positioned to address security issues globally. Because cyber risk is very transverse and requires a multidisciplinary approach, our work always accounts for the entire malicious spectrum, as well as our client's unique environments and needs.
Contributed to fully adapt the crisis management organization to better handle cyber threats, within a large and complex organization and several subsidiaries.
Client: a critical, publicly traded, large industrial operator
With a first-class technical partner, created and delivered two annual multi-days cyber crisis exercises for a large public CERT. The exercises were multidisciplinary, with full infrastructure simulation and team's projection.
Client: a public CERT
Cyber crisis and extortion spanning several countries. Assumed crisis lead through a first-class technical partner, supporting the client's core crisis team and advising on public communication.
Client: an international organization active in 30+ countries
Drafting of a cyber crisis management process integrating with existing corporate processes and tools such as IT ticketing, GDPR incidents handling, etc).
Client: a medium-sized industrial French organization
Major cyber crisis exercise involving the security, IT and risk departments, with a first-class technical partner. Sixteen branches and departments training on the same scenario, several combined attacks.
Client: a critical, publicly traded, large industrial operator
During a cyber crisis, with a first-class legal partner, advised on crisis communication. Created common, precise and transparent wordings for customers and external stake holders.
Client: a French national sports federation
Organized a dual audit integrating physical security and cybersecurity, both involving on-site penetration testing. Managed the physical security audit, coordinated the cybersecurity work and drafted the final report.
Client: a French lawyer's office specializing in international arbitration