Some information and cybersecurity frameworks require organizations to actively maintain communication and engagement with industry bodies and relevant service providers as part of their information security program. This subscription service provides evidence of initial engagement with GRCI Law as a provider of CIR (cyber incident response) services to help satisfy these requirements.
The Cyber Incident Response Annual Retainer – Silver service is provided by IT Governance USA’s sister company GRCI Law Limited, a specialist in data privacy, cybersecurity, and legal and compliance advisory services.
When you subscribe to the service, you will be provided with a letter of engagement demonstrating your initial engagement with GRCI Law’s CIR services. In the event of a cybersecurity incident, you can contact our CIR team using the email address and/or 24/7 telephone number provided to inquire about the purchase of further services that will help you respond to the incident.
This service is provided in English, anytime of the day or night. The service will be activated within 48 hours of purchase.
Cliff leads the CIR services within GRCI Law. He began his career teaching computer systems and network technologies in further and higher education. He moved into the defense industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration. Cliff has experience in both IT and OT environments. He understands the complexity of cybersecurity incidents and their potential impact on businesses, their users, and their customers.
John is a data protection professional who has been working in data privacy for more than 12 years. As Operations Director for GRCI Law, he oversees service delivery and manages the GRCI Law consultant team. He set up our specialist data breach and DSAR (data subject access request) services and developed our Cyber Incident Response Service. He is also the DPO for a number of GRCI Law’s key clients. Before joining GRCI Law, John was Head of Information Rights and Head of Information Law and Security with the UK Metropolitan Police Service. Both roles involved regular contact with the UK regulator, the ICO (Information Commissioner’s Office). He has worked on several high-profile cases regarding information access rights.