Cyber security for charities part 4: What does a good incident response plan look like?

Third Sector Promotion NCSC

Michala Liavaag, founder and managing director, Cybility Consulting, takes us through what a good cyber attack incident response plan should look like.

According to a recent Third Sector and NCSC survey, nearly a third of charities (30%) don’t have a process in place to respond to a cyber attack. And 39% of charity board members have not recently discussed the potential impact of a cyber attack within their organisation.

In this video, the final part in our four-part series produced by Third Sector Insight in partnership with the NCSC, Michala Liavaag, founder and managing director of Cybility Consulting, shares her insights and top tips, including:

  • What does a good incident response plan look like?

  • Will you have to suspend operations after a cyber attack?

  • What steps should board members take after an attack?

  • How often should charities review their incident response plan?

Free tools and resources

  • Get your organisation in shape to prepare and respond to cyber threats with the NCSC's Exercise in a Box fitness tracking tool.

  • Check out the NCSC’s incident management guidance

  • Cyber security guidance for boards

  • Guidance for small charities

  • Report a cyber security incident

  • Click here to sign up for the NCSC Early Warning service and receive alerts about potential security issues affecting your network.

    Have you registered with us yet?

    Register now to enjoy more articles and free email bulletins

    Already registered?
    Sign in

    Cyber security for charities: Insights and guidance

    Not everyone is working for the greater good: cyber criminals are targeting charities. We're seen as data-heavy and vulnerable. That's why Third Sector, in partnership with the National Cyber Security Centre, has collated advice, insight and guidance to help you take simple steps to staying more secure, so you can better and more easily understand the risks and prepare appropriately. 

    Visit the content hub here.


    Articles from the NCSC

    Defending data: How to keep your charity's personal information safe from cyber attacks

    Promotion from NCSC

    Explore the impact of having data stolen in a cyber attack and the practical steps to protect your charity from financial and reputational damage.

    Cyber criminals are coming for your data – here’s how to stop them

    Promotion from NCSC

    Six practical steps to minimise your charity’s cyber threat, taken from an expert panel at a recent Third Sector / NCSC webinar

    Cyber security for charities part 8: Budget-friendly data protection tips

    Promotion from NCSC

    Jonathan Chevallier, CEO, Charity Digital, explains how small charities can protect the personal data they hold.

    Cyber security for charities part 7: How can organisations protect their data?

    Promotion from NCSC

    In this video, Richard Bartlett from the Royal Society of Wildlife Trusts explains the steps the medium-sized charity has taken to protect its personal data.

    Cyber security for charities part 6: Cyber Essentials

    Promotion from NCSC

    In this video, Neil Furminger from IASME explains how Cyber Essentials certification can help charities protect against the most common cyber attacks.

    Cyber security for charities part 5: Protecting personal data

    Promotion from NCSC

    In this video, the National Cyber Security Centre's deputy director explains the challenges charities face in protecting personal data and simple steps they can implement now.

    Visit the Third Sector NCSC content hub here.