Effective Communications During and After a Cyber Attack

Thursday, April 29, 2021
1 - 2:30 p.m. ET

Crisis Management

Corporate Communications • Public Affairs

As communicators across the globe know, 2020 brought with it several trials and triumphs. Covid-19 has forced companies to create remote workforces and operate off cloud-based platforms that leave companies more vulnerable than ever to cyberattacks. When an attack hits, it is the communicator’s responsibility to keep the calm and ensure employees and other stakeholders are well-informed. So, are you ready?

To get there, join Ragan on Thursday, April 29 for a can’t-miss unique webinar to help you prepare effective internal and external communications plans for your organization.

Considering that the average cost of a data breach is estimated at $3.86 million (per IBM/Ponemon Institute), cyberattacks and data breaches are one of the biggest and most intense security threats that companies face. Many companies make the mistake of only focusing on preparing the technology side and forget about how they will disseminate information when a cybercrime takes place.

The April 29th webinar will feature real-world case studies, stories, perspectives and tactics from leading communications and IT security executives. You’ll hear how communicators have collaborated with IT departments to establish effective lines of communications to help prevent or mitigate a breach.

At this Ragan Crisis Communications Webinar, you’ll learn:

  • How and when to communicate a cyberattack to your company
  • Why Communications needs to be part of your cybercrime planning committee
  • Tips for creating a Cyber Incident Response Plan that everyone in the company can understand
  • Strategies and tactics to build reputation resilience before a crisis
  • Managing a breaking cyberattack story in the media and with internal and external stakeholders
  • How to determine the right communications approach for a potentially crippling situation
  • Best practices for creating a strong relationship between IT/Cyber and Communications teams
  • How to measure the impact of your response on your company’s brand and reputation


  • Types of Cyber Attacks Cheat Sheet
  • Cybersecurity Statistics Spreadsheet
  • Accenture’s 2020 State of Cyber Resilience Report
  • Incident Response Reference Guide
  • CIRP (Cyber Incidence Response Plan) Outline for Communicators
  • Tip Sheet for Dealing with the Media During and After a Cyber Attack
  • Communicator’s Cyber Attack Timeline Sample
  • Cheat Sheet for Internal Communications Before, During and After a Cyber Attack
Don't miss this unique opportunity!


1:00 p.m. – 1:05 p.m. ET
Opening Remarks: Laying the Groundwork
1:05 p.m. – 1:20 p.m. ET
Crisis Preparedness: Building Reputation Resilience Before a Cyberattack

During this session you’ll understand how to craft a program of consistent, flexible and meticulously planned corporate communications engagement. Understanding that a company’s ability to recover from any type of crisis relies on the goodwill, reputation and positive relationships fostered among stakeholders prior to a crisis, you’ll learn:

  • Strategies and tactics forward-thinking companies are adopting to build brand resilience
  • How a strong reputation can help you survive a cyber crisis and minimize damage to external relationships and business value
  • Acting with openness and transparency by sharing IT policies and procedures
VP of Communications
Lutheran Services Florida
Read bio
1:20 p.m. – 1:40 p.m. ET
Dynamic Crisis Response: Managing the Breaking Cyberattack Story

It’s not if, but when a cyberattack will hit your company. You must be ready to manage the story as it is happening. Microsoft is no stranger to hackers and mass cyberattacks. Russ McRee, head of security operations at Microsoft, will provide insights gleaned through his experience and share best practices as to how you can communicate with your employees, customers, government agencies and the media while the chaos ensues.

In this session we will look at:

  • How communications teams can best determine their priorities right from the start of a cyberattack
  • When to inform your employees of a cyberattack and guide them with what they need to do and what they can and cannot say outside of the company
  • How to provide advance notification to government agencies
  • Ways to leverage data and insights to inform responses and key communication messages
  • How to best handle media and press communications to ensure an accurate portrayal of the breach
Senior Director Security Operations & Incident Response
Read bio
1:40 p.m. – 2:00 p.m.
Case Study: Communicating your Cyberattack Internally (The Playbook)

What do you tell your teams when your company has been cyber-attacked? What’s the best way to reach people? Who needs to be involved? There are no simple answers. However, there are some key tips on how to communicate internally – before an event happens, during the event and after. Hear from someone who lived through a disruptive malware attack, which encrypted information on internal systems and interrupted client access to its services. Kathy Raymond, VP Internal Communications at Pitney Bowes, will share an “in the trenches” story as well as some learnings and tips to ready your employee communications for such a crisis.

She will share:

  • How Pitney Bowes learned of the ransomware attack and what they experienced
  • The first steps to communicating the ransomware attack with employees and customers
  • Identifying the cause of the ransomware attack and communicating that internally
  • Communicating changes to procedures and policies following the resolution of the cybercrime
Vice President, Internal Communications
Pitney Bowes
Read bio
2:00 p.m. – 2:30 p.m.
Communicating Your Cyber Incident Response Plan and Post Attack Changes in Policies and Procedures to Internal and External Stakeholders

A cyber incident response plan is a set of instructions designed to help companies detect, respond to, communicate and recover from cyber security incidents. As cyberattacks impact organizations across functions, the plan should encompass various areas of the company including HR, finance, marketing, customer service, legal, insurance, employee communications, and public relations. In this session, we will examine how you can play a role in your incident response plan and the importance of swift and continual communications internally.

You will learn how to:

  • Document, outline and explain your incident response team’s roles and responsibilities
  • Craft and release impactful public statements as soon as possible
  • Work with skeptical journalists to position the crisis in a fair and positive light
  • Keep stakeholders informed about the policies, procedures and security protocols your company has taken to thwart future attacks
  • Business continuity plans and data breach response plans for the future
  • Training exercises for employees to help in preventing future incidents
  • Communicate internally with leadership and employees swiftly and continually
Founder and CEO
Above Promotions
Read bio
Director of Incident Response and Threat Intelligence
Read bio


Vice President, Internal Communications
Pitney Bowes
Read bio
Founder and CEO
Above Promotions
Read bio
VP of Communications
Lutheran Services Florida
Read bio
Senior Director Security Operations & Incident Response
Read bio
Director of Incident Response and Threat Intelligence
Read bio

Director, IT Communications
Read bio

Top 5 reasons to attend this webinar

  • You’ll listen to some of the nation’s top communications and crisis experts.
  • You’ll receive all presentations and bonus handouts.
  • You’ll get access to an on-demand recording of the event for twelve months.
  • You’re guaranteed extensive, how-to instruction that you can use immediately.
  • You can attend this immersive session without having to leave your desk.


You should attend if you spend at least a quarter of your time in any of these areas:

Crisis Communications • Public Relations • IT Communications • Internal Communications • Global Communications • Cybersecurity • External Communications • Media Management • Executive Communications • Corporate Communications • Strategic Communications • Information Technology Public Affairs • Incidence Response


Registration $349
Ragan Insider Registration $299
Nonprofit Registration $275
For questions, please contact customer service at

CService@Ragan.com or by calling 800-878-5331.

Please visit our FAQ


Cancellation Policy: Fees are non-refundable. Substitutions will be accepted up to 7 days prior to the event for another virtual event of equal value.