Skip to Main Content
Select regional store:
Learn for less: Save 25% on high-quality instructor-led and self-paced foundation training | Find out more
Cyber Incident Response Annual Retainer – Silver

Cyber Incident Response Annual Retainer – Silver

SKU: 5867
Format: Consultancy
Availability: Available now

Some information and cybersecurity frameworks require organizations to actively maintain communication and engagement with industry bodies and relevant service providers as part of their information security program. This subscription service provides evidence of initial engagement with GRCI Law as a provider of CIR (cyber incident response) services to help satisfy these requirements.

The Cyber Incident Response Annual Retainer – Silver service is provided by IT Governance USA’s sister company GRCI Law Limited, a specialist in data privacy, cybersecurity, and legal and compliance advisory services.

Inquire now


When you subscribe to the service, you will be provided with a letter of engagement demonstrating your initial engagement with GRCI Law’s CIR services. In the event of a cybersecurity incident, you can contact our CIR team using the email address and/or 24/7 telephone number provided to inquire about the purchase of further services that will help you respond to the incident.



  • Evidence of engagement with GRCI Law as a provider of CREST-accredited CIR services
  • Helps meet the requirements of information security frameworks that obligate organizations to engage with relevant providers
  • 24/7 helpline for immediate action to contain the incident, and minimize reputational and financial damage
Why choose GRCI Law?

Why choose GRCI Law?

  •  Unlike other organizations, GRCI Law is a specialist legal consultancy, which only advises on cybersecurity, data protection, and privacy
  • GRCI Law’s CIR service has been approved as a CREST-accredited service
  • GRCI Law’s team of cybersecurity specialists, qualified lawyers, and DPOs (data protection officers) has decades of experience in privacy and information/cybersecurity compliance programs and personal data solutions for high-profile organizations
  • GRCI Law takes a pragmatic approach to assessing and managing your data privacy needs, aligning standards and best practices with your operational and business requirements
  • GRCI Law works 24/7 to ensure that you are covered any time of the day or night


This service is provided in English, anytime of the day or night. The service will be activated within 48 hours of purchase.

Your Team

Cliff Martin – Head of Cyber Incident Response

Cliff leads the CIR services within GRCI Law. He began his career teaching computer systems and network technologies in further and higher education. He moved into the defense industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration. Cliff has experience in both IT and OT environments. He understands the complexity of cybersecurity incidents and their potential impact on businesses, their users, and their customers.

John Potts – Operations Director

John is a data protection professional who has been working in data privacy for more than 12 years. As Operations Director for GRCI Law, he oversees service delivery and manages the GRCI Law consultant team. He set up our specialist data breach and DSAR (data subject access request) services and developed our Cyber Incident Response Service. He is also the DPO for a number of GRCI Law’s key clients. Before joining GRCI Law, John was Head of Information Rights and Head of Information Law and Security with the UK Metropolitan Police Service. Both roles involved regular contact with the UK regulator, the ICO (Information Commissioner’s Office). He has worked on several high-profile cases regarding information access rights.

Customer reviews

This website uses cookies. View our cookie policy