Managing risk and responding to cyber incidents.
Our cyber advisory specialists work with boards, executives and organisations to evaluate their risk, develop mitigation strategies and implement solutions. We assist organisations to manage their cyber risk effectively with the design and adoption of strong governance, operating models and risk reporting frameworks and our cyber response experts help clients to maintain business operations and minimise impacts following a cyber incident.
How we can help you
We provide commercially focused and strategic advisory services.
-
We help clients proactively address cybersecurity risks through data management and IT systems reviews and education and awareness training. Incident preparedness and knowing how to respond effectively are key to minimising financial and reputational loss should an incident occur.
-
We conduct detailed, thorough investigations to help clients understand the incident’s lifecycle, contributing factors and impacts. We isolate the infection or attack and develop a remediation plan to restore critical data and enable the resumption of business operations.
-
Our data collection and preservation experts follow strict chain-of-custody protocols aligned with best practice guidelines. We utilise industry-leading, fast and secure SaaS-based document management platforms for data review and analysis. Data remains protected by our secure, swipe-access, independently accredited facilities.
-
Our forensic accounting specialists can be appointed to quantify financial loss resulting from a cyber attack or network interruption. Our cyber specialists can help identify and develop key financial information suitable to be used in the submission of damages measurement.
Our experience
We bring an evidence-based approach to our work with a strong emphasis on action and results.
-
Cloud storage data leak
Our client became aware of a data breach disclosing highly sensitive customer information due to a misconfiguration by untrained and inexperienced internal IT staff. We were engaged to conduct an independent investigation and identify and quantify the incident’s impact.
-
Attempted fraud through phishing attack
Our client identified that an invoice they had sent for payment had been accessed by unknown persons and re-sent to their customer with modified banking details.
-
Ransomware attack recovery
Our client suffered a significant ransomware attack and engaged KordaMentha to assist their internal IT team with initial incident management and investigation.
The scope of the investigation was vast and complex. I have appreciated the team’s consistent professionalism, technical expertise, problem solving ability and dedication.
