Best practices

Crisis of cyber origin, the keys to operational and strategic management

Cyber crises are becoming more and more common for public and private entities. To help build capacity in the face of this growing threat, ANSSI, in partnership with the Club des directeurs de sécurité et de sûreté des entreprises (CDSE), has published a guide on cyber crisis management. In addition to the best practices suggested to strategic and operational actors involved in the cyber crisis management, several organisations that have experienced a major incident offer their testimonies and the ways they were able to respond.

The disruption involved in a cyber crisis forces organisations to adapt and operate in unusual ways. These sudden and uncertain upheavals cause stress and complicate decision-making, while remediation actions must be decided and executed quickly to limit the impact.
“It is not possible to improvise a response in the middle of a disaster. The preparation, tools and training are essential to maintain activity in the event of a computer attack”, says Guillaume Poupard, Director-General of ANSSI.
To meet this need, ANSSI has published the guide Crisis of cyber origin, the keys to operational and strategic management, in partnership with CDSE. Aimed at anyone involved in the response to a cyber crisis, this guide enables organisations to adapt their existing crisis management system to take into account the specific aspects of cyber crises.
Addressing both crisis preparation and response, this guide, made up of 18 practical sheets, proposes objectives to be reached for each phase of crisis preparation and response and is addressed to each of the actors at the strategic and operational levels.
The advice and best practices it presents are enhanced by several feedbacks from organisations that have been victims of cyber attacks. Their concrete examples and testimonies of the lessons they have learned complement the course of a crisis.

This guide is part of the “Cyber Crisis Management” collection, designed to help organisations prepare for and manage a cyber crisis. This collection is composed of three volumes: Organising a cyber crisis management exercise (available in French and English), Crisis of cyber origin, the keys to operational and strategic management (available in French and English) and Anticipating and managing your cyber crisis communication (available in French and English). This collection aims to provide a cross-sectoral expertise on all aspects of cyber crisis management.

pdf
Crisis of cyber origin, the keys to operational and strategic management
884.96 Ko