Claire TillsMay 20, 20186 minCase Study: A.P. Møller-Maersk and NotPetyaA.P. Møller-Maersk's Chariman Jim Hagemann Snabe said on a panel at the World Economic Forum in January 2018 that "we were basically average when it comes to cybersecurity, like many companies, and this was a wake up call" he also said "we chose a very open dialogue around this from day one." These two quotes illustrate a novel approach to framing and responding to a cybersecurity incident. This approach was successful for Maersk in that it has made it through the incident wi
Claire TillsSep 6, 20176 minCrisis Communication and Incident Response pt. 1In previous posts, I examined the use of communication at the more granular level of technical attribution, now I'd like to zoom out a bit. I want to examine incident response and how communication can be used throughout the process. Based on my research and conversations, incident response is a pretty siloed process, particularly from communication. It's frequently undertaken by teams external to the organization experiencing the incident and isn't something integrated into