In detail, our Business Continuity and Resilience service consists of the following:
Business Continuity and Resilience service. Our Business Continuity and Resilience advisory service is delivered in four phases: Discovery, Design, Deliver and Disengage.
- Discovery. Working with all the client's stakeholders, we confirm what its critical assets are (these are its people, infrastructure, equipment, information, a process/supply chain or its reputation) and what events may occur that would disrupt their functionality and how that may affect business operations.
- Design. Again, working with the client's stakeholders, we develop Business Continuity (or contingency) Plan(s) to assure business continuity should an event cause disruption to the company's operations.
- Deliver. Once the Business Continuity (or contingency) Plan(s) has been agreed upon by the client, our risk management staff will deliver any necessary training to staff, coupled with relevant exercises and drills.
- Disengage. Once the client is content that the Business Continuity and Resilience service is fully integrated into their company cadence, our risk management staff will disengage.
Security and Business Continuity (or contingency) Plan(s) - External Validation. Many companies will have Business Continuity (or contingency) Plan(s), however, many of these plans will be dated (and may not consider current threats, hazards and vulnerabilities or new critical assets) or will not have been evaluated. Neptune P2P Group provides an external validation service. From a security perspective, this could include Neptune P2P Group staff being used to evaluate/penetrate a company's security measures. Also, if a company has a Business Continuity (or contingency) Plan(s) in place, Neptune P2P Group can run a series of validation exercises to evaluate the plan's validity. It is better to learn lessons in an exercise environment rather than for real when lessons will cost a company unnecessary lost revenue.
Neptune P2P Group is an international private security company offering security risk management, maritime security, protective services, intelligence, and training. We have been protecting organisations operating in high-risk environments, on land and at sea, worldwide since 2009. From maritime security for vessel protection to security risk management consultancy, planning and training, we are here for you 24/7.
Cyber Security Awareness training. 95% of cyber security breaches are a result of human error. In March 2020, as the UK locked down at the start of the COVID-19 pandemic, an employee at British construction firm Interserve received a phishing email, which they forwarded on to a colleague. On 1 April that colleague opened the email, unleashing its payload of malware. Interserveโs IT security systems detected the malware, and the company took action to remove the malicious files โ but failed to sanitise the initially infected laptop. The attacker retained control of that laptop, and on 3 April gained access to a server. The attacker ultimately took control of 283 systems and 12 administrator user accounts by early May. In the process, they compromised data relating to 113,000 current and former Interserve employees. The UKโs Information Commissionerโs Office fined the company ยฃ4.4m, the fourth-largest fine in the ICOโs history โ because of the firmโs consistent lack of risk management.
Cyber Security Awareness Training is the process of educating employees to understand, identify, and avoid cyber threats. An effective cyber security awareness training program addresses the cybersecurity mistakes that crew and staff are vulnerable to when using email and the internet. The ultimate goal is to prevent or mitigate harmโto both the organisation and its stakeholdersโand reduce the human element cyber risk.
Neptune P2P Group is an international private security company offering security risk management, maritime security, protective services, intelligence, and training. We have been protecting organisations operating in high-risk environments, on land and at sea, worldwide since 2009. From maritime security for vessel protection to security risk management consultancy, planning and training, we are here for you 24/7.