Are you confident in your defences?

At the heart of PwC’s Cybersecurity team lies the PwC Cyprus Cyberlab, a dedicated environment used for performing our various cyber assessments, dissecting the latest trends in cybersecurity and performing research and development. Our CyberLab professionals are:

• Conducting Penetration Testing exercises to assess organisational exposure to threats and vulnerabilities and understand your current security posture
• Performing Phishing Campaigns measuring the awareness of employees when it comes to maliciously crafted, targeted emails.
• Performing Red Teaming exercises simulating advanced multi-layered attacks against people, processes and technology, to highlight risks posed by advanced threats
• Researching attacker tactics, techniques and procedures to remain at the cutting edge and adapt our attack style to reflect the latest attacker behaviour and inform attack scenarios 
• Developing custom-made tools to perform advanced attack simulations and proof-of-concept attacks as part of incident readiness and Red Teaming assessments

Illuminating the real threats and defending your organisation against attacks that have bypassed your traditional controls, requires a solid attack detection capability that continually matures and improves

• Incident Detection Capability & Maturity Development

Uncover the known unknowns through a series of workshops designed to assist you develop and mature your incident detection capability. We deliver a holistic review of your data sources, visibility, detection coverage and detection profile to develop your detection maturity.

• Detection Use-Case Development Workshops

Make the most out of your logs through a series of workshops designed to assist you formulate a use-case development framework. We provide you with the methodologies that will enable you to make the most out of your existing data sources while assessing the quality of your developed use-cases.

• Cyber Threat Modelling

Identify the real-world threats you face and analyze how they would navigate your infrastructure to achieve their objectives. Understanding and targeting control deficiencies helps identify areas of reliance to your detection capability and helps prioritise your detection efforts.

• Threat Hunting Workshops

Expose your defenders to Threat Hunting approaches to attack detection, offering them inspiration, tools and techniques they can apply to proactively and iteratively review your estate for attacks you haven’t been alerted to.

Preparing for the inevitable requires building confidence in your ability to manage risks and respond to incidents and crises as they arise at both strategic and tactical levels.

• Executive Incident Response Exercise 

Rehearse the strategic decision-making elements of incident response through a scenario-driven, tabletop incident response exercise designed for your leadership.

• Executive Incident Response Assessment. 

Exercise your leaderships’ incident response and identify gaps in your Incident Management and Response Framework through an Executive Incident Readiness Assessment.

• First Responders Readiness Exercise. 

Your IT-staff are on the frontlines defending your systems and responding to attacks. Enable them to rehearse the tactical decision making elements of incident response through a scenario-driven, tabletop incident response exercise designed for them.

• First Responders / Readiness Assessment. 

Exercise your IT staff incident response and expose gaps of your Incident Management and Response Framework and Playbooks through a scenario-driven, tabletop incident response exercise.

• Advanced Attack Technical Simulation. 

Mobilize your entire detection and response structure through a scenario-driven, technical simulation of a cyber attack on your network. Such simulations are also known as ‘Red Team’ operations. During a Red Team Operation our team tries to achieve predefined objectives, through the use of social engineering, spear-phishing and other advanced attacker tactics of exploitation.