Crisis Communications and Public Relations after a Cyber Security Incident (Live Online)
A one day non-technical course, aimed at preparing organisations to manage their crisis communications and Public Relations after a cyber security incident. The course is aimed at both communications and PR professionals, as well as crisis, resilience and business continuity professionals.
What’s included?
- Electronic course slides
- Electronic certificate of attendance
Details
Course Description
This Crisis Communications and Public Relations after a Cyber Security Incident course will teach delegates how to understand the requirements of responding to a cyber incident and how to develop appropriate communications under the particular circumstances of a cyber incident.
“Thankfully, we now live in a world where it is accepted that data breaches happen and organisations are more comfortable disclosing that they have been victim to an attack. However, with this welcome move away from victim blaming, organisations are now being judged more on how well they manage a breach.” – Brian Honan, Computer Weekly
This training course is delivered as a one day, live online training course by an experienced tutor. Scheduled breaks will be provided within each session. During the course, delegates will be able to use their microphones to take part in discussions and ask the tutor any questions, there is also the option to use a webcam too. Interactivity features used during the training may include the use of breakout sessions for group work, polls and quizzes. The course is delivered via GoToTraining.
The timings for this training are 9am-4pm UK time.
The cost of this course (ex VAT) is £525.00 / €625.00 / $700.00.
Course Modules
Module 1 – Introduction to Cyber and the Threat Landscape
- Contemporary notable cyber events
- Nature of the threat
- What are the different types of cyber attacks?
- Understanding ransomware (double, triple or quadruple) attacks and impacts
- Who are the threat actors?
- Good and poor communications response examples
Module 2 – Crisis Communications Response Framework
- Possible frameworks for managing a cyber incident
- Communications roles, responsibilities and tasks
- Working with a Cyber Security Incident Response Team (CSIRT)
- Stages of a cyber response
- Roles and responsibilities of external parties including law enforcement involved in the response
Module 3 – Developing a Crisis Communications Response Plan
- Difference in planning for a cyber incident as opposed to a ‘normal’ incident
- Communications tasks and a checklist of actions
- Coordination of internal and external communications
- Plan headings and content
Module 4 – Communications Response Strategies
- Low profile and maximum exposure communications strategies – what has worked and what has not
- The benefits and downsides of different communications channels
- Responding on a full ransomware lockout when channels and information may not be available to responders
- Website preparation and providing information to stakeholders
Module 5 – Contemporary Case Study
- Learnings from a contemporary cyber incident, including a review of their external communications
Module 6 – Stakeholder Identification and Regulatory Reporting
- Identifying the stakeholders which need to be communicated with under different cyber scenarios
- Statutory and regulatory reporting requirements
- Requirements and timings for reporting to the Information Commissioner’s Office (ICO)
- Development of an effected stakeholder communications plan
Module 7 – Developing Lines to Take and Responding During a Cyber Security Incident
- Developing lines to take
- Writing internal communications
- Use of appropriate language and terms
- Framing your response
- Explaining ransomware pay or not to pay decisions
- Identify appropriate support to be offered to those affected
- Exercise to practice skills learned
Final Quiz
- Final quiz to check understanding
Upcoming Courses
Just looking for a price?
Request a quote below to have a member of the team come back to you with a price tailored to you.
Programme
09:00 - 09:15
Introduction
09:15 - 09:45
Module 1 – Introduction to Cyber and the Threat Landscape
- Contemporary notable cyber events - Nature of the threat - What are the different types of cyber attacks? - Understanding ransomware (double, triple or quadruple) attacks and impacts - Who are the threat actors? - Good and poor communications response examples09:45 - 10:30
Module 2 – Crisis Communications Response Framework
- Possible frameworks for managing a cyber incident - Communications roles, responsibilities and tasks - Working with a Cyber Security Incident Response Team (CSIRT) - Stages of a cyber response - Roles and responsibilities of external parties including law enforcement involved in the response10:30 - 10:45
Break
10:45 - 11:30
Module 3 – Developing a Crisis Communications Response Plan
- Difference in planning for a cyber incident as opposed to a 'normal' incident - Communications tasks and a checklist of actions - Coordination of internal and external communications - Plan headings and content11:30 - 12:00
Module 4 – Communications Response Strategies
- Low profile and maximum exposure communications strategies – what has worked and what has not - The benefits and downsides of different communications channels - Responding on a full ransomware lockout when channels and information may not be available to responders - Website preparation and providing information to stakeholders12:00 - 13:00
Lunch
13:00 - 13:30
Module 5 – Contemporary Case Study
- Learnings from a contemporary cyber incident, including a review of their external communications13:30 - 14:30
Module 6 – Stakeholder Identification and Regulatory Reporting
- Identifying the stakeholders which need to be communicated with under different cyber scenarios - Statutory and regulatory reporting requirements - Requirements and timings for reporting to the Information Commissioner's Office (ICO) - Development of an effected stakeholder communications plan14:30 - 14:45
Break
14:45 - 15:30
Module 7 – Developing Lines to Take and Responding During a Cyber Security Incident
- Developing lines to take - Writing internal communications - Use of appropriate language and terms - Framing your response - Explaining ransomware pay or not to pay decisions - Identify appropriate support to be offered to those affected - Exercise to practice skills learned15:30 - 15:45
Final Quiz
- Final quiz to check understanding15:45 - 16:00
Course Review
Please note, timings are indicative and exact timings may vary due to delegate experience and their interest in certain topics. The course may finish earlier if all topics have been covered.
Course Benefits
By the end of the Crisis Communications and Public Relations after a Cyber Security Incident course, delegates will be able to:
- Understand contemporary cyber incidents and the evolving landscape
- Evaluate a framework for effective communication management during cyber incidents
- Design a comprehensive cyber communications response plan
- Propose tailored communications strategies for different cyber events
- Recognise insights and lessons from a recent cyber incident
- Distinguish the diverse regulatory reporting requirements associated with cyber incidents
- Formulate an effective communications response, including recommended lines to take
Completing this course will contribute towards your BCI Continuing Professional Development (CPD). Further information can be found on the BCI’s website here.
Who Should Attend?
- Communications and PR professionals
- Crisis, risk and business continuity practitioners
In-House Options
If you would like this Crisis Communications and Public Relations after a Cyber Security Incident training course delivered privately for your organisation, please contact the BC Training team on 01253 542650 or email info@b-c-training.co.uk.
Testimonials
Sign-up to our Newsletter
"*" indicates required fields