Emergency Cyber Incident Response Service

Emergency Cyber Incident Response Service

  • Limit the impact of a cyber incident with support from our team of experts.
  • Respond to any cyber incident quickly and with confidence, with backing from our legal and technical teams.
  • Return to business as usual, and minimise costs and potential fines with guidance from our world-renowned experts.
Enquire today
Price: £0.00
Excluding VAT

If you have suffered an incident and need emergency support, call our dedicated team now on +44 (0)1353 494 464.

What’s included in the service?

In the event of a suspected or confirmed cyber security incident, GRCI Law will help your organisation identify and respond to the issue. We will provide you with a dedicated consultant who will work with you throughout the cyber incident response lifecycle.

This service provides:

  • Incident management – Ensuring the incident is managed appropriately and in accordance with the scope and objectives of your organisation. Our team will support and work with you throughout the process and recommend where best to deploy and use your resources.
  • Detection and analysis – Ensuring that the full scope and nature of the incident has been identified, documented and understood by relevant stakeholders within the organisation. This includes identifying any relevant risks that will need to be considered when responding to the incident.
  • Forensic investigation – Gathering and preserving the evidence/artefacts necessary to understand the full scope and/or answer any of your questions regarding the incident. It may be necessary to pass this evidence on to relevant authorities depending on your organisation’s objectives for the incident response.
  • Containment and eradication – Advising on the measures necessary to contain and eradicate the incident, limiting its spread and reducing further impact.
  • Recovery – Directing the available resources to manage your recovery from the incident as quickly and effectively as possible.
  • Reporting – Providing key information about the incident and the response to management and staff involved in the response activities.
  • Communications – Advising on communications both internally and externally, including to relevant authorities, customers and/or suppliers.
  • Lessons learned – Reviewing your incident response procedures following the incident to highlight improvements and inform your cyber incident response readiness.

Why choose GRCI Law?

At GRCI Law, we understand how stressful a cyber security incident can be and the challenges an organisation may face during this time. No matter the size of the incident, its unexpected nature can severely impact your organisation in some cases, it may even hinder your business operations, affecting your reputation and financial stability.

Our Emergency Cyber Incident Response Service will help you respond to a cyber security incident quickly and effectively to enable you to return to normal business operations as soon as possible. If the incident also has data protection implications, this service can still support your needs and provide your organisation with a one-stop shop that can also manage the engagement with the relevant supervisory authorities.

Our consultancy team will guide and support you through the cyber incident response process, which includes the detection, analysis, containment, eradication and recovery phases. We will ensure that any lessons learned are identified and documented throughout the incident response process, which can be fed back into your future cyber incident response capabilities.

At this time, this service can only be provided in English.

Your Team

Cliff Martin – Cyber Incident Responder

Cliff leads the cyber incident response services within GRCI Law. He began his career teaching computer systems and network technologies in further and higher education. He then moved into the defence industry, where his main areas of expertise were risk management and accreditation, incident management and response, and secure systems architecture and configuration. Cliff has experience in both IT and OT (operational technology) environments. He understands the complexity of cyber security incidents and their potential impact on organisations, and customers.

Cliff’s qualifications include:

  • CISSP® (Certified Information Systems Security Professional)
  • GCIH (GIAC Certified Incident Handler)
  • GICSP (Global Industrial Cyber Security Professional)
  • CISMP (Certificate in Information Security Management Principles)
  • CCAI (Cisco Certified Academy Instructor)
  • BSc (Hons) Computer Network Technology
  • CIRM F (Cyber Incident Response Management Foundation)

John Potts – Operations Director

John is a data protection professional with a wealth of experience gained as the Head of Information Rights and Head of Information Law and Security with the UK Metropolitan Police Service. Both roles involved regular contact with the UK regulator, the ICO (Information Commissioner’s Office). John worked as the UK police service lead for data protection matters relating to the EU Prüm Convention for the exchange of biometric data across EU member states. He has worked as a member of several UK NPCC (National Police Chiefs’ Council) boards, including the NPCC National GDPR Reform Group, which was responsible for introducing the EU GDPR (General Data Protection Regulation) and the Law Enforcement Directive into the police service. He has also worked on several high-profile data breach cases within the private, public and charity sectors. At GRCI Law, he has set up our specialist data breach and DSAR (data subject access request) services and is the DPO (data protection officer) for a number of GRCI Law’s key clients. John is also the technical editor of the BCS (British Computer Society) publication Data Protection Officer.

John’s qualifications include:

  • BSc (Hons) Policing and Police Studies
  • Bramshill Research Fellowship: ‘Debriefing and the Use of Enhanced Cognitive Interviewing Technique’.
  • ISEB Freedom of Information, QT&C
  • Bronze Award for Lean Methodology, Accredited by Cardiff University
  • PDP Courses: Data Protection Essential Knowledge 1 and 2, Handling Subject Access Requests, Conducting Privacy Impact Assessments. FOI Practical Knowledge 1 and 2, Understanding the Environmental Information Regulations

About us

Led by our team of experienced DPOs, lawyers, barristers, and information and cyber security experts, we provide DPO, breach, data privacy management, and DSAR support, as well as associated non-reserved legal services.

We offer legal risk and compliance consultancy advice that you can trust, but without the burden of administrative duties and expenses that law firms must bear in order to carry out certain ‘reserved legal activities’ such as litigation, conveyancing and advocacy.

Stay in touch

Stay up to date with the latest industry news on our blog.

Follow us on social media


Speak to an expert

If you have any queries or are unsure of how to progress, please get in touch with our team of experts who will be able to assist with your enquiry and provide guidance options.

Enquire today