top of page

Over 50% of organisations didn’t have a plan for dealing with a cybersecurity incident pre COVID-19

In a world where remote working was a possibility rather than a necessity, over 50% of businesses worldwide did not have a sufficient response plan should a cyber security incident take place. The COVID-19 pandemic forced the mass evacuation of employees working from offices, moving their workforce and business to an online environment.

The move from office to remote working presented an opportunity for cyber criminals to exploit the vulnerabilities that many businesses did not realise were in existence. For those that did have plans in place in the case of a cyber incident, it has become apparent that although they exist overall, they may not take into account the rush to homeworking left in its wake. So is it too late to set up a cybersecurity incident plan? The answer here is no, it is never too late and at The West Midlands Cyber Resilience Centre, we offer a range of services for businesses to help you identify your digital vulnerabilities and weaknesses One of our services is our Cyber Business Continuity Exercise. This service offers a review of your business continuity planning and the resilience of your organisation to cyber-attacks such as ransomware or when attackers take control of your core systems. We use elements of the international business continuity management systems standard ‘ISO/IEC 22301:2019’ as a model to review your continuity planning and includes aspects such as internal and external (customer and public) communications, recovery objectives (tolerable downtime, tolerable service loss), disaster recovery and recovery testing and exercises. You will be presented with a report that includes a comprehensive gap analysis and plain language recommendations based on your current business continuity arrangements, impact assessments, risk management and your business. Find out more on our dedicated Student Services page We also offer a range of membership packages that are designed to help your business become more cyber resilient. With 43% of cyber attacks being aimed at small businesses, and with only 14% being prepared in the event of an attack, there has never been a better time to join us. Take a look at the membership packages available on our Membership page.


The contents of this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of The Cyber Resilience Centre for the West Midlands is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others.  Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. The Cyber Resilience Centre for the West Midlands provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us.


The Cyber Resilience Centre for the West Midlands does not accept any responsibility for any loss which may arise from reliance on information or materials published on this document. The Cyber Resilience Centre for the West Midlands is not responsible for the content of external internet sites that link to this site or which are linked from it.

bottom of page