Cyber Attack Response Strategy for Facilities Management

Our IT Director came in to this Facilities Management Company after a cyber attack, helping to shape their cyber attack response strategy.

Company Profile

The organisation is a leading provider of integrated facilities management services. Catering primarily to the UK’s private and public sectors, they have a strong emphasis on serving not-for-profit organisations, local government, and high footfall retail centres.

CEO’s Mission

Following a challenging facilities management cyber attack, the organisation faced significant disruption in its business operations. The severity of the attack highlighted the need for a robust cyber attack response strategy. Then, the CEO, recognising the importance of IT leadership in crisis management, collaborated with the CFO to pinpoint an individual capable of providing top-tier technology leadership.

They decided to bring onboard an interim CIO. This role was crucial to bolster the leadership team, establish best practices, and ensure the implementation of technologies that would safeguard the business in the future. Additionally, the CIO tasked themselves with charting a longer-term IT roadmap..

CIO’s Objectives

  • Spearhead the immediate IT director cyber response to the cyber attack.
  • Thoroughly assess technologies for potential security vulnerabilities and present findings to the Board.
  • Evaluate the skills and capabilities of the current IT team, identifying any capability gaps.
  • Finally, collaborate with the organisation to devise a forward-thinking IT roadmap.

What the CIO Did

Cyber Attack Response

The CIO took charge, working closely with the leadership team and internal IT resources. Their primary goal was to restore business services under Major Incident Management. A pivotal part of their strategy was to identify the cyber attack’s source and take proactive IT measures in facilities management to mitigate risks associated with that entry path.

Resolve Security Weaknesses

In partnership with internal IT teams and external partners, the Director undertook a comprehensive review of the IT Security Policies and Procedures. This was benchmarked against best practices to identify any weak points or high-risk areas. Finally, the outcome was a Service Improvement Plan, which was presented for board approval. This plan aimed to elevate the organisation’s security posture, encompassing additional security services, user training, and the pursuit of a recognised security accreditation.

Creation of a Technology Roadmap

Once normalcy was restored, the Director engaged with the Board, the broader leadership team, and internal IT resources. This collaboration aimed to gain a deeper understanding of the business and its ongoing strategy. Then, with the insights gathered, a technology roadmap was crafted, focusing on enhancing and optimising technology use in the future. This roadmap received the Board’s endorsement for implementation, showcasing the organization’s commitment to continuous improvement and innovation.

The Results

  • Directed the Cyber Attack Response, restoring core services in 24 hours 
  • Reduced further IT security risks through improved standards and planned accreditation 
  • Engaged the wider business and leadership team in IT for the first time
Facebook
Twitter
LinkedIn