Get in Touch

Get in Touch

Get in Touch

Please get in touch using the form below.

Close form

You are here: Home / Services / Incident Response Preparedness

Incident Response Preparedness

Cyber-attacks can happen at any time and potentially cause a great deal of damage and lead to huge costs. So it’s essential to get ready for one.

Our Incident Response (IR) team has helped organisations in every industry sector prepare for, and respond to, a multitude of situations including large-scale ransomware attacks, supply-chain compromises and Advanced Persistent Threats (APTs). With hundreds of hours and incidents behind them, our certified professionals are ready to help you.

Our IR Preparedness services include an Incident Response Readiness Assessment (IRRA), IR Plans, IR Playbooks and IR Tabletop Exercises.

Incident Response Readiness Assessment

Our unique IRRA prepares organisations’ team members, processes and technologies to respond to a cyber security incident at any time of the day or night. The service consists of a four-phased approach:


  • Define the training, identify key stakeholders, measure security maturity and identify quick wins
  • Establish a clear mandate with measurable objectives, Key Performance Indicators (KPIs) and action plans
  • Create and deliver a concise plan


Get The Board On Board

  • Demystify cyber security, adopt businessfocused
    language, elevate key issues to
    executives and the board
  • Identify the benefits and opportunities that come
    with improved cyber resilience
  • Embed cyber security into the organisation

Processes and playbooks

  • Business email compromise
  • Ransomware
  • Insider threat
  • Malware
  • Espionage
  • Data loss (accidental and malicious)


  • Test plans, playbooks and teams
  • Help team building
  • Learn lessons and develop staff
  • Teach team members what to be aware of to improve the organisation’s response

Access to our certified team of experts 24/7

Protection from the latest cyber threats and potentially damaging cyber-attacks

Respond to security breaches quickly, decisively and effectively to minimise business disruption

Maintain the trust and confidence of internal and external stakeholders, the market and industry regulators

As part of our IR Preparedness service, our team evaluates these key components as standard:

IR Plans
We review any cyber incident response plans – if they don’t exist then we’ll help to create one that’s fit for purpose.

IR Playbooks
We assess existing cyber IR playbooks to make sure they address the most critical scenarios.

IR Tabletop Exercises
To make sure that everything works effectively and efficiently, we test plans, playbooks, and teams holistically. By working closely with our customers every step of the way we help them learn lessons from each exercise so that they are as prepared as they can possibly be for any eventuality.

MISA verified XDR and Microsoft Solutions Partner logos.

Why entrust Quorum Cyber with Incident Response preparations?

Our dedicated Incident Response team has a wealth of experience helping organisations in the public and private sectors get ready for the worst possible situation – a cyber-attack. All our team members are fully qualified to cope with any scenario and they are constantly in training for the next certification so that they can help you stay one step ahead of adversaries in an increasingly hostile, unpredictable and fast-changing digital landscape.

This professionalism has helped Quorum Cyber to be a Microsoft Solutions Partner for Security (formerly called a Gold Partner) and a member of the Microsoft Intelligent Security Association (MISA). In 2022, we also became the first cyber security company headquartered in the UK, and one of a select few anywhere in the world, to be verified by Microsoft for our Managed Extended Detection and Response (XDR) service.

Meet Our Facilitators

Representatives from Quorum Cyber will help guide you through the exercise. They are neither on your side nor working against you. They are a strictly neutral observer providing inputs and responses to actions or inaction. They are, however, there to help and, if you are struggling, they will prompt progress by asking questions. Once participants have made their decision, the facilitator will inform the outcome and impact that the decision has had on the scenario.

Mark Cunningham-Dickie

Mark Cunningham-Dickie is the Cyber Incident Response Team Lead for Quorum Cyber. As well as leading technical specialists and organisations through the fallout from a cyber incident, Mark also helps companies develop Cyber Incident Response Plans and Playbooks that are specific to their environment meaning that, should the worst happen, recovery is far quicker and the impact to the organisation is minimised.

Robert Hayes

Robert Hayes is a Non-Executive Director for Quorum Cyber. Robert has a portfolio of Non-Executive Director & Strategic Advisory roles, supporting public & private sector organisations through complex change programmes, with a particular focus on risk & cybersecurity.

Robert spend 30 years working in senior positions in the UK Government, followed by ten years as a Senior Fellow of the Microsoft Institute for Advanced Technology in Governments.

Are you challenge ready?

Our Cyber Exercising workshops test your plans, plays, and teams to make sure that everything works. Like any good coach, we work with you to help you learn lessons from each exercise to ensure that any weaknesses are bolstered and ensure that you are challenge ready. Take your cyber resilience to the next level. Speak to our team about the cyber security challenges facing your organisation and how we can help.

Stay updated with the latest cyber security news and insights