request a consultation

Manage Your Cyber Risks With Confidence

Cyber security today requires an approach that is Top Down, Risk Based, and Business Focused.

Today’s cyber security efforts require more than a technical and tactical framework. Recent SEC guidance mandates Board of Directors oversight and similar regulations will go into effect in Europe soon. Cyber Incident Response Plans (CIRPs) and Chief Information Security Officers (CISOs) must address the entire cyber security spectrum from the strategic all the way down to the tactical.

Tap our proven solutions for cyber security. Take the first step by developing CIRP and TTXs that go beyond the technical and tactical.

Request a Consultation
What we do

Cyber Readiness Made Simple

Most organizations require a formal cyber incident response plan (CIRP) so they can pass an audit, remain compliant with current laws and regulations, and satisfy any cybersecurity requirements outlined by their Board of Directors (BOD). Plus, the CIRP must be actionable so that your IT team can use it in the event of a cyber incident.

Top Down

Organizations today should have a clear link between those risks that have been identified by the Board (and published in their annual reports) and their cyber security program, spanning policies, plans, and procedures.

Risk Based

Cyber risks are now considered “corporate” risks and must function in the realm of Enterprise Risk Management (ERM) just like any other. The CISO will need to illustrate how the technical and non-technical components of both their CIRP and their overall InfoSec efforts specifically address each of these risks.

Business Due Diligence

It is critical to address the many other business implications of a cyber incident, including statutory and contractual reporting, cyber insurance integration, protecting the organization’s reputation and market share, preparing for potential litigation, as well as many others.

services

Cyber Incident Readiness Services We Offer

Cyber Incident Response Plan (CIRP) Development

A CIRP must go beyond satisfying an audit requirement. Get a one-on-one coaching experience, where we address all the various aspects of successfully navigating your unique cyber risks. The CIRP is merely an artifact of our work together.
Learn More

Tabletop Exercises (TTX)

Go beyond the tactical and technical with experienced, management-level TTXs.
Learn more

Workshops

Develop your organization's CIRP and become a better cyber security leader at a three-day workshop in one of our great locations. 15-seat max.
Learn more

Industries We Support

With 10+ years of experience writing Comprehensive Cyber Incident Response Plans (CIRP) and conducting management level Tabletop Exercises (TTXs), you can feel comfortable that we address your industry specific needs.

  • Financial Services
  • Healthcare
  • Insurance
  • Energy
  • Manufacturing
  • Technology
  • Government
Explore Industries

Our Mission Is Simple

In this new era of Board of Director (BOD) Cyber Risk oversight, we prepare you and your team to successfully protect your organization from cyber risks. Take advantage of our Top Down, Risk Based, and Business Focused approach and elevate your InfoSec program beyond the typical “Tactical” & “Technical” mindset and ensure that you and your InfoSec program are BOD ready. We have leveraged this approach with hundreds of global clients for the past 10 years and stand ready to assist you.

Let's Get Started

About Me

Meet Neal McCarthy

Neal is an ISC2 distinguished subject-matter expert with decades of cyber security experience in the military, law enforcement, and business domains. For the past decade, he has focused on management-level CIRPs and TTXs, including Board of Directors-level involvement.

More About Neal

Why our approach works

Jennifer B.

Director of InfoSec & Compliance

“I can’t thank you enough. The value that we received out of the TTX was kind of like an Amex card; priceless. Within only 2 weeks after conducting the TTX, I was able to secure the following resources & support:

  • $15K spend to improve our security on our source code (upgrade software subscription to be able to apply necessary security protections)
  • New DevSecOps resource to help lead security improvements and security focus on the development of our multiple software platforms that we internally develop
  • Executive Level Support & Attention for the project I am now leading to:
    • Improve source code repository protections
    • Improve and implement better app security scanning tools and processes of our internally developed applications
    • Implement security requirements for our internally developed applications before we can say they are ready to sell

I had been pushing for and setting the stage for many of the above items for months and in some cases years. However, within the first 15 minutes of our TTX, our Executives immediately saw the need to implement better source code and application security protections. It was also evident to me within the first 15 minutes that I was now going to have the support and resources I needed. Coincidentally, the Solar Winds breach that was announced only 2 days later helped make the theoretical IR test scenario all too real, and that also helped our Execs realize this wasn’t just a hypothetical scenario.

To me, the value in the TTX is more than just identifying a gap here and there. It’s about getting the Executive level support that I need to better protect our company. Thank you so much for helping me accomplish that!”

Neal McCarthy

Jennifer was one of many incredible InfoSec leaders that I’ve had the privilege of working with over the last decade, and I am so grateful she took the time to write this review when this project closed back in 2020. Executive Management TTXs are very different events. If done well, you get outcomes like this. Over the last 10 years, Executive Management TTX’s have become my specialty. Unfortunately, this type of a result is not that uncommon. On any given year, there have been 6-12 of these “Business Extinction epiphanies”. And it wasn’t me telling them they had this risk. These exercises are specifically designed to get the Executive team thinking & talking about their fears. I simply guide them along. More to the point, the minute I feed them the industry standard FUD (Fear, Uncertainty, Doubt) or try to “schlep” them a technology solution, the opportunity is lost. I try to be an honest broker and provide my clients the best advice I can. The Leadership team ultimately needs to make the call. But when they sincerely feel there is an existential risk to their organization, you will get the resources you need to protect the organization.

Greg G.

SVP, Business Resilience & Information Security Manager

“Neal’s expertise really helps our team understand the threats we may face, and, more importantly, what we can do to discover and mitigate them. Creating a business-focused CIRP was also important and improves our ability to implement it. Well done! This was a great experience. I’m looking forward to working with Neal in the future!”

SEC.gov | SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

Neal McCarthy

Greg has been a great client to work with over many years. He first came to me with the typical technical/forensic CIRP that currently proliferates the industry. His CFO was correctly concerned that it was inadequate for the broader due diligence obligations of the bank. We then leveraged both the TTX and CIRP efforts to focus on developing both a document and a consciousness within the leadership group of the full scope of requirements that needed to be addressed during an incident. Most recently, our efforts have focused on ensuring both his IR policy and CIRP are aligned with the BOD Cyber Risk oversight narrative that was provided in his latest Annual Report. We also conducted an Executive Management TTX to fully vet this new SEC requirement (amongst other objectives)[1]. Organizations need to ensure that the BOD responsibilities they’ve committed to in their Annual Report actually manifest in their IR documentation and during any “material” cyber incident. You may also uncover some undocumented BOD expectations along the way. [1] SEC.gov | SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

Elevate Your Cyber Readiness

Lead cyber security incidents with confidence and improve your InfoSec program.

REQUEST A CONSULTATION
request a consultation