Cybersecurity & Privacy

Business continuity

Cyberattacks can cause extensive direct or indirect damage. In the digital world, the number of dependencies on various ecosystems, data networks and services as well as software maintained by third parties has increased significantly. We will help you improve your preparedness as well as your ability to recover. Together, we will create functional processes and practices for continuity management and recovery. We will also help you choose the right technological solutions, identify the required capabilities and optimise the current practices. 

What we offer

• Maturity assessment of the current state of cybersecurity 
• Management system development and integration (ISO/IEC 22301, ISO/IEC 27031)
• BIA (Business Impact Analysis)
• Business continuity planning
• Disaster recovery planning
• Crisis exercises

Contact us

Cybersecurity in M&A

In mergers and acquisitions, the importance of cybersecurity has increased significantly. Companies are highly dependent on digital services, networks and systems. In one way or another, every company is a technology company. That’s why it is important to understand the cyber risks and current capabilities or investment needs of the target company before preparing the sales agreement. When listing, it is important to know the various security-related expectations. By contrast, when selling, the potential buyers should be provided with accurate information on the current state of the company’s cybersecurity. It is particularly important to ensure the proper integration of the acquired company.

What we offer

• Buyer side cyber due diligence assessments
• Sale side cyber due diligence assessments
• IPO readiness assessments regarding cybersecurity
• Expert support within post deal integration and IPO lift up regarding cybersecurity

Contact us

OT Security

In industrial automation, traditionally not enough attention has been paid to security risks. Nowadays, factories are increasingly being connected to  the internet even though there might be lots of outdated and vulnerable technology. Our team will conduct a technical audit in your factory environment with the aim of identifying vulnerabilities and draw up a roadmap for improving the security.

After the security has been improved, the factory will be more secure and your employees, investments and environment will be better protected.

What we offer

Depending on your level of maturity and life-cycle stage, we offer the following services:

• Technical security testing of production systems as part of factory testing (FAT) or commissioning (SAT), for example
• Technical audit of the production facility, including IT/OT interfaces and third-party connections
• Development of the supply chain’s security
• IEC 62443 maturity assessments and preparation for a certification audit
• BIA assessments and continuity planning for production, support and building technology systems

Contact us

Technical cybersecurity and Red Teaming

Technical cybersecurity refers to services that allow you to simulate real-life cyberattacks in your organisation. In the simulations, our technical team uses the same tactics and techniques as real cybercriminals.

These realistic attack simulations will help your organisation effectively develop its defences and level of preparedness. Stronger cyber defence will stabilise your business and protect it from attacks.

What we offer

We can provide you with the technical testing package of the desired size. The package will be a combination of the following:

• Analysis of the external attack surface
• Identification of the ability to access the organisation’s data network
• Development of defence methods (optimisation of SOC services)
• Threat Intel Services
• Attack simulation (Red Teaming)
• Crisis exercise
• Penetration testing
• Threat management

Contact us

Cloud security

As digitalisation progresses, cloud services are used even more extensively. When establishing a technology strategy, it is also advisable to pay attention to possible risks related to the transfer to the cloud or hybrid implementation and the management of such risks. In addition to the services offering business, ICT and IoT benefits, the companies and organisations can, for example, centralise and utilise the cybersecurity capabilities and services provided by various cloud service providers. We help our customers take full advantage of the transfer to the cloud. We know the technological solutions and capabilities of key global cloud service providers, and we have a whole network of security specialists across the entire PwC chain that we can use for your benefit. 

What we offer

• Rationalisation of security controls
• Development of Zero Trust architecture 
• Data management and protection
• Utilisation of the cloud platform’s capabilities
• Assessment of controls and compliance 
• Identity and access management

Contact us