Managing and Preparing for Cyber Incidents

BCM-IT 2 Days £1,050.00 (+VAT)

Course Overview/Dates

Over the last few years the number of cyber incidents has grown, affecting organisations large and small. High profile incidents such as Sony, Talk Talk, and the Petya and NHS ransomware attacks, have had a major impact on the operations and reputation of the organisations.

What's included?

  • Course slides and notes
  • Lunch and refreshments
  • Certificate of attendance

Course Dates

Dates Number of days Location Price
Mon 4 Mar 2019
London, UK £1,050.00 Book Reserve
Course tutor: Charlie Maclean-Bristol MA (Hons), PgD, FBCI, FEPS, CBCI
Mon 9 Sep 2019
London, UK £1,050.00 Book Reserve
Course tutor: Charlie Maclean-Bristol MA (Hons), PgD, FBCI, FEPS, CBCI
Back to top

Details & Programme

This training course is not a technical response, but looks at the actions organisations can take to prepare themselves, and how they should manage a cyber incident, including very importantly, how to manage communications associated with the incident. It will also look at the types of cyber attacks, the cyber landscape and how to exercise your cyber response plan. 

Delegates will learn how to prepare their organisation, how to develop an effective response and how to manage an incident should it occur.

This course was initially delivered over one day, however due to overwhelming student feedback, it has been expanded to a two day course. The course is based on good practice from a variety of government and private organisations.

Day 1

StartFinishSubject AreaDetail
10001045Module 1 - Cyber incident landscape and threatsNumber of cyber case studies 
What are the different types of cyber threats?
Who are the threat actors?
What are the threat vectors?    
Cyber incident impacts
Similarities and differences when comparing cyber incidents to other crisis events
11001230Module 2 - PrepareTechnical preparation and different defence strategies
Regulatory framework and organisations involved in cyber response 
Cyber risk assessment, understanding your organisation's vulnerability and level of preparedness
External help available: cyber insurance, intelligence and technical response consultants  
13301530Module 3 - Prepare cont.Reviewing and developing your cyber policy and guidance
Developing cyber incident management response plans and playbooks
How cyber fits with existing IT service continuity plans, crisis management, business continuity and disaster recovery plans 
15401700Module 4 - Group WorkGroup work – Understanding the threats and levels of preparedness

Day 2

StartFinishSubject AreaDetail
09000930Review of day one
09301045Module 5 - ResponseReact, Respond, Resolve framework for managing cyber incidents
Identifying a cyber incident
Cyber impact assessment
Reporting to regulatory bodies 
Ransomware, to pay or not to pay?
Recovery actions
11001230Module 6 - Response
(Communications during a cyber incident)
Communications case study
Managing your organisation's communications with customers, stakeholders and the media
Developing a communications strategy
Cyberattack victim or villain?
13301515Module 7 - Exercising Cyber PlansDeveloping a cyber exercise
Cyber exercise scenarios
Styles of exercise
Exercising different levels within the organisation
Simulating the threat
Making exercises realistic
Hints and tips for successful exercises
15301630Module 8 - Practical exerciseHands-on, running a cyber exercise
16301700Course review
PDF Download a PDF of the course details >
Back to top

Course Benefits

Completing this course will enable you to:

  • Understand the different types of cyber attack and cyber incident landscape
  • Look at the preparation which can be carried out prior to a cyber incident occurring
  • Create a cyber playbook
  • Identify the responses and issues associated with responding to a cyber attack
  • Plan and run a cyber exercise
Back to top

Who Should Attend?

  • BC and resilience managers
  • IT managers
  • Members of crisis management teams or those responsible for crisis management
Back to top


Charlie Maclean-Bristol

Charlie Maclean-Bristol


Back to top

In-house Options

Please contact the BC Training team on 01253 542650 or email, should you wish to discuss options for delivering this course in-house at your organisation.

Back to top




51-53 Hatton Garden

+44 (0) 20 7242 4123

Back to top

Sign-up to our weekly bulletin

Twitter feed

Charlie's Top 10 Business Continuity and Crisis Management Books for Christmas

Charlie counts down his top 10 Business Continuity and Crisis Management books, as recommended by you.

14 December 2018

“I came away with so many ideas and actions for my organisation and I now fully understand BC.”

Louise Squires
View further testimonials