Cyber incident response

Minimise the impact of an incident with expert support from our global, award-winning, cyber incident response team, on hand 24/7/365. 

background-image-standard-hero (1)

Major cyber incidents place intense stress and scrutiny on even the most experienced internal teams. In these circumstances, the difference between a swift resolution and a prolonged organisational crisis is the right response.

It was immediately clear that the S-RM team had the relevant experience, strong communication skills, and the capability to take a lead role in stabilising our immediate situation.

Chambers & Partners, Crisis & Risk Management Guide 2022

 

Why S-RM?

Chambers & Partners ranked

2022 and 2023 for Cybersecurity risk, placing in Band 2, with Band 1-ranked practitioners

Trusted partners

We’re trusted by the world’s leading cyber insurers and law firms as their chosen incident response provider

Rapid, global response

Our team is global, multi-lingual and responds 24/7/365. We provide impactful technical triage and advice within hours of an incident

Incident response team of the year

Winner at Zywave’s 2023 Cyber Risk Awards - Cyber Incident Response Team of the Year

Cyber incident response-3

Cyber incident response services

We help you respond and recover quickly from an incident. Our team provides clarity in the midst of a crisis, giving you the confidence to make the right decisions at the right time. Ensuring that when you return to business as usual, you’re in a stronger and more resilient position. During an incident, we: 

  • Offer prompt advice, no matter where in the world the incident has taken place.  
  • Have consultants deployed onsite within a competitive timeframe.
  • Investigate the source, nature and extent of the breach, capture and preserve necessary evidence.
  • Establish the extent of the compromise and work with you to prevent its spread across your organisation.
  • Swiftly rebuild and restore your systems and data securely.
  • Advise on notification obligations, media engagement, and business continuity planning.
  • Provide support across your organisation during the incident and liaise with your third parties including insurance and legal representatives.
  • Offer recommendations based on our response findings to help you emerge stronger from the incident. 

Our core capabilities

Our experience in the management of crisis, kidnap, ransom, and extortion cases sets us apart during a cyber incident response. Bringing decades of negotiation and crisis management experience to the table supports your business in achieving a successful outcome during an incident. Our team: 

  • Translates technical findings into straightforward language.
  • Prioritises trust and empathy during a critical incident.
  • Aligns our findings with your bespoke needs and focuses on your business priorities.
Cyber incident response2-1

Our accreditations and certificates

CREST-NSCS-Accreditation-1

 

Case study

Helping a major public organisation through a ransomware attack

We recovered 30,000+ encrypted endpoints, 300+ servers, and 14,000+ computers in less than a week to assist a major public organisation through a crippling ransomware attack. 

S-RM … explain things in an understanding way and really reassure clients in a non-overly technical way which is appropriate to their audience.

Chambers & Partners, Crisis & Risk Management Guide 2023

Our experts

We bring the sharpest thinking to our incident response services. Our expert team provides honest and objective advice with a breadth of incident experience across all industries and sectors. 

Jamie Smith
Jamie Smith
Board Director, Global Head of Cyber Security Services

Jamie Smith joined the business in 2011. Before S-RM, Jamie worked for five years as a South Asia specialist for Kroll Associates in Mumbai. When he first joined S-RM, Jamie was responsible for building its Corporate Intelligence capability, helping clients manage their counterparty risk during due diligence transactions and leading clients through a series of complex disputes and investigations.

More recently, Jamie’s role has focused on S-RM’s Cyber Security practice. He has built deep expertise in helping clients respond to and recover from cyber security incidents as well as helping clients prevent incidents by developing robust cyber security programmes. Jamie has an LLB in Law and French from the University of Bristol.

 

Smith, Jamie

 

Paul Caron
Paul Caron
Head of Cyber Security, Americas

Paul is S-RM’s Head of Cyber Security, Americas. Paul has over 20 years of experience spanning both the private and government sectors in roles across leadership, military intelligence and counterterrorism, and cyber security leadership & engagement delivery. Before joining S-RM, he was the Managing Director of Incident Response for a global consulting firm. In this role, he used his experience to help clients who were experiencing complex ransomware attacks.

After a career in the U.S. Army, where he was a subject matter specialist in various facets of the Intelligence and Special Operations fields, Paul joined PwC. At PwC, he was an engagement manager and focused on cyber security strategic transformation projects. He has significant experience advising Fortune 100 clients through proactive security transformation efforts and post-breach remediation activities. He has a strong track record of partnering with senior security leaders to mature their cyber security programs on their strategic journeys.

Paul holds an MBA from Norwich University. He was in the first graduating class of the Norwich University Strategic Studies and Defence Analysis program. He is also the co-author of “Security Supervision and Management: Theory and Practice of Asset Protection.”

Martijn Hoogesteger
Martijn Hoogesteger
Head of Cyber Security, Benelux

Martijn Hoogesteger is Head of Cyber Security for the Netherlands. He is responsible for growing S-RM’s cyber presence in the EU and leads the team of cyber professionals based in the Netherlands.

Prior to joining S-RM, Martijn was at Northwave, a Dutch cyber security firm, where he helped build out their Incident Response and Offensive Security teams. He also takes part in the Dutch TV show ‘Hunted’, where he is a Digital Investigator, tracking down fugitive contestants using digital techniques.

Martijn holds an MSc in Computer Science from the University of Twente, with a specialisation in Cyber Security.

Chris Ormond
Chris Ormond
Head of Cyber Incident Response, UK

Chris joined S-RM in January 2023 as the UK IR Practice Head having previously lead another IR Team at professional services firm. With over 12 years within the DFIR sphere including within the Military, a large national Telecoms company and, as part of effective consultancies, Chris ensures that the IR Team are able to rapidly respond to clients suffering highly impactful incidents.

With a technically focused history in Cyber Crime Investigations as well as internal and external Cyber Security and Incident Response roles, Chris is able to understand situations, develop processes and strategies and engage with clients on both the technical and commercial business levels, ensuring that a full-spectrum and bespoke IR response is delivered by the Cyber IR team, every time.

Chris has a history in the Armed Forces, Law Enforcement and wider Cyber arenas, handling cases from complex and global ransomware attacks to network intrusions and insider threats across many industries including government, industrial manufacturing, FinTech, Retail and supply chain environments, to name a few. This experience coupled with qualifications in Forensic Computing and Certifications within Incident Response areas, allows him to support the team to effectively and accurately drive all responses through S-RM to a quick and successful conclusion.

Joani Green
Joani Green
Technical Director, Cyber Security

Joani Green joins S-RM’s cyber leadership team as Global Technical Director for the Cyber Incident Response practice. She brings deep expertise and experience in penetration testing, purple teaming, cyber defence, major incident management, incident readiness and digital forensics.

Prior to joining S-RM Joani was the Global Head of Incident Response for a research-led cyber security consultancy. In this role she was responsible for enabling the company’s Incident Response strategy and implementing continuous improvement to the practice. Joani also supported the Incident Response team in delivering investigations ranging from ransomware and advanced nation-state threat actors, to insider threat and fraud investigations for multi-national organisations.

Joani is a keen proponent for Equality, Diversity and Inclusion in cyber security and is involved in several minority focussed mentoring and training initiatives.

Jamie Smith
Jamie Smith

Board Director, Global Head of Cyber Security Services

Paul Caron
Paul Caron

Head of Cyber Security, Americas

Martijn Hoogesteger
Martijn Hoogesteger

Head of Cyber Security, Benelux

Chris Ormond
Chris Ormond

Head of Cyber Incident Response, UK

Joani Green
Joani Green

Technical Director, Cyber Security

Talk to us today

Remain resilient with trusted incident response services

Learn how our decisive and timely response to cyber incidents can help your business recover and return to work stronger than before. Get in touch with our team.

Cyber incident response4-1