Cyber security - our services

Balance cyber security, data privacy and opportunity to move boldly forward

Multiplying cyber threats have made an effective cyber security programme a critical business requirement to manage information and technology risks and protect against cyber threats, including cyber criminals, cyber attacks and data breaches, and propel transformation.

Cyber security and data privacy - Enabling trust in a digital, data-driven world

We don’t just protect business value, we create it – using cyber security and privacy as a tool to transform businesses. As companies move toward a digital business model, exponentially more data and sensitive information is generated and shared among organizations, partners and customers. Business digitization also exposes companies to new vulnerabilities, making effective cyber security and data privacy critical.

Solving the biggest cyber security issues

When CEOs and boards used to evaluate their threats or competitors, few considered cyber attacks. Today, the volume and concentration of data, electronic, and credit card transactions, coupled with easy global access to the digital business ecosystem, magnify exposure to cyber threats and issues.

How we can help

Our cyber security and privacy practice can help you assess, build and manage your cyber security capabilities while enabling effective incident response to a myriad of potential threats. Our Bermuda cyber security and privacy practice consists of professionals with significant business and technical experience who can help you address your cyber and privacy risks, ranging from supporting your risk assessment process, developing and assessing policies and procedures including the response and recovery process, designing, implementing and assessing controls, and conducting efficient and effective independent IT audits.

We also leverage the power of our global and regional network of member firms to provide organisations with deeper, broader and timely expertise on evolving cyber security and privacy challenges.

Insurance Sector Operational Cyber Risk Management Code of Conduct

On December 23, 2019, the Bermuda Monetary Authority (the BMA or the Authority) released its proposed Insurance Sector Operational Cyber Risk Management Code of Conduct (the Code) for comment. Comments are requested by January 31, 2020, with the expectation that the final Code’s requirements be effective by January 1, 2021, followed by enforcement starting June 30, 2021.

Learn more and connect with our cyber team

Cyber security: Four components to propel transformation and achieve growth

Growth through digital transformation

Many organizations are transforming their businesses by pursuing emerging technologies to develop new products, services, and ways of doing business. However, organizations don’t always consider the emerging cybersecurity threats that could impact their business imperatives. PwC can help you design transformation strategies with security in mind from the very start, with the foresight to help you see what’s on the other side of the leading edge. 

Our services

  • Strategy Development and Transformation 
  • Cybersecurity Risk Governance
  • Third Party Security Risk Management
  • Emerging Technology Security 
  • Cloud Security
  • Security Awareness Training and Culture Transformation

Build trust and use data with confidence  

Organizations face a growing patchwork of new data protection and privacy laws in different territories. This creates doubts when using data resulting in missed business opportunities or regulatory breaches through inappropriate use, leading to loss of trust. PwC can help you prepare for and craft a privacy program compliant with global data-privacy regulations that can help you use data with confidence to create value and enhance customer trust.

Our services

  • Privacy Readiness Assessment 
  • Privacy Transformation
  • Personal Data Governance
  • Advisory and Compliance for:
    • General Data Protection Regulation (GDPR)
    • Cayman Islands Data Protection Law and others

Maximizing return by integrating, managing and improving cybersecurity technologies

Leaders seek to focus on opportunities that move their business forward, yet they’re often mired by intricacies of today’s cybersecurity and privacy challenges. PwC can help you efficiently integrate new and existing technology systems into your business, as well as actively manage them to deliver continuous operational improvements and increase your cybersecurity investment. 

Our services

  • Identity and Access Management 
  • Analytics and Monitoring 
  • Enterprise Security Architecture
  • Security Risk Reporting

Managing impact to your business with confidence

Leaders know they need to rapidly and effectively respond to threats, but many lack confidence in their plans.  A clear view of your incident response plan’s strengths and weaknesses is the first step in preparing you to confidently manage a potential security incident. PwC can help detect, respond to, investigate and remediate threats across the incident-management life cycle using customized threat intelligence and proven tools and methodologies. 

Our services

  • Incident Readiness and Incident Response 
  • Threat Intelligence and Vulnerability Management
  • Attack and Penetration Testing
  • Cyber Threat Simulation

Contact us

Joseph Gordon

Joseph Gordon

Director, Head of Financial Advisory, PwC Bermuda

Tel: +1 441 295 2000