Cyber Crime
Not all corporate threats come from competitors
The threat from Cybercrime - click here to view Michael Baume's video presentation
What is Cybercrime?
Cybercrime is any attack on your business using technology. As businesses increasingly rely upon technology to deliver services, so the risk of being attacked grows. The worst outcome for an on-line business is a notice on the website “This service is unavailable”.
Globally current estimates of Cybercrime losses run at $114 Billion per annum. Cybercrime is on the increase and the UK Government ranks it as a top four risk to national security. Losses are affecting companies of all sizes and arise from financial loss, data loss, extortion, blackmail, business disruption and loss of business knowledge. As stealth is a feature of Cybercrime, most companies do not even realize they have been attacked or information lost. The top 300 companies in the UK have been warned by police that they have probably been attacked already but may not realize it.
What do I risk losing to Cybercrime? The greatest risk is to your business operations, particularly where there is reliance on the internet or intranet to deliver real time on-line services to customers. An attack can severely disrupt operations as well as damage your corporate reputation and cause financial loss. Once any disruption has been resolved further costs arise in restoring and rectifying data. Prevention and preparation are vital. Once incidents arise recovery times become critical to re-establishing operations, rehearsal is thus necessary to demonstrate the ability to recover from an attack and return service to normal.
How can RMI help? RMI are experts in intelligence & covert operations. Our Cybercrime prevention offers 4 components:
1) Risk assessment to establish current vulnerabilities
2) Program for improvement to close “gaps”
3) Rehearsal and scenario activities to harden preparations in the event of a crisis
4) Crisis management support.
We believe the Board and senior management need to be assured on a regular basis over the vulnerabilities to cyber attack and the effectiveness of the preparations laid to deal with an attack when it occurs.
Cyber Threat Assurances Matrix
| Constituencies | Concerns | Assurance |
| Board | Do we have an effective solution in place to protect our business? | Regular statement providing independent attestation |
| Senior Management | Are the solutions we have effective and economic? | Regular proofing and rehearsal of incident management capability and costs |
| Risk Management | Do we understand the risks we are running and are they contained? | Risk Mapping with controls and mitigants identified |
| Information Technology | Are we aware of key threats and have we adequate responses to manage these? | Continuous cyber threat and risk analysis with prioritised remediation programme |
| Operational Management | Do we have effective responses to attacks and can we operate 24x7? | Proofing exercises with staff to establish ability and volume impacts |
| Audit | How well is the company able to cope with attacks and to survive? | Rehearsal exercise results, posture against prioritized threats & risks, risk mapping outputs |
| Compliance | Does our company meet standards and comply with legislation in this area? | Regular assessment of company capability and proof through rehearsals |
Cyber Threat Assurance
Giving clients demonstrable proofs and tests of capability against attacks
• Attacks can take many different forms and have the potential to be fatal to your business in an extreme case. RMI provides a dynamic response and control capability to current and emerging cyber threats using expert knowledge, threat intelligence and cyber resources.
• RMI ensures that our clients
- Have an up to date understanding of the global threat landscape which is not confused by an array of products, services, and resources currently on offer
- Are strategically positioned with demonstrable proofs and tests of capability to defend against attack
- Are not operating under a false sense of security which ultimately increases vulnerability to attack
• Solutions are tailor made to client specific needs, circumstances and internal management requirements.
• Our confidential service recognises the reputational dynamics of the threats being managed and the need to provide an independent, discrete and direct assurance to the Board.
• RMI addresses the mulitlayered needs of the Board, Operational Management, IT, Audit and Compliance, Customer Service, Risk Management, Production, Sales and Marketing, etc.
Cyber Threat Assurance A Managed Service
Cyber Threat Assessment and Risk Analysis (CTARA):
• Vulnerability to foreseeable attacks,
• Consequences to reputation and the business,
• Current incident and crisis management response capabilities
Scenario Testing:
• Demonstrable proofs and tests of capability against known threats
Programme Management:
• Cross functional tasks and priorities arising from CTARA,
• Co-ordinating contingency plans
• Briefings to Board, management, IT, Risk, Audit etc.
Crisis Management Support:
• 24/7 Incident Response & Liaison with the Security Services
• Call Out Tree, Conference Bridges etc.
• Crisis Communications
• Monitoring and co-ordinating incident responses
Cyber Threat Assurance Delivery Framework
RMI provides a range of services to critical service providers in the Energy, Transportation, ICT, Banking and Government sectors. Whereas Critical National Infrastructure (CNI) is directed at man made security threats, technological threats and natural disasters are also taken into account. Cyber Threat is ranked second in the UK National Security Strategy.
Whereas previously CNI was characterised with an emphasis on physical protection (CCTV, locks, fences, security guards) a growing threat now comes from the use of cyber as a preferred means of attack. It is RMI’s view that the implementation of an ‘Integrated Contingency Planning’ framework is it’s key to successful defense againt cyber threat. RMI’s delivery framework for Cyber Threat Assurance, including CNI, is described in the diagram below.
