Cybersecurity solutions: preparing, responding, restoring.

KordaMentha’s cyber advisory specialists work with boards, executives and organisations to evaluate their risk, develop risk strategy and implement cybersecurity resilience. We assist clients with the design and adoption of strong governance, operating models and risk reporting frameworks.

Clients rely on our cyber response experts to rapidly intercept breaches and minimise impacts following a cyber incident. Drawing on our broad range of incident response and digital forensic professionals, we assemble a team with the right expertise for each engagement. This allows us to provide an action-orientated and outcome-driven response at a time when inaction can be costly and lead to further loss. When required, we can adapt our approach from incident response to a detailed digital forensic investigation, potentially complemented by eDiscovery, financial impact quantification and expert witness assistance.

Who are we?

We help clients protect and recover value through proactive cyber risk identification and management, and rapid and effective action in response to a breach.

Meet our experts

How we can help you

We offer a specialised team of cybersecurity experts with extensive experience in delivering solutions that help organisations manage their cybersecurity risk and respond to incidents.

Cyber advisory

KordaMentha helps clients understand their organisational cyber risk relating to information, people, process and technology. We help clients proactively manage their cybersecurity risk and meet security compliance obligations.

Find out more
Incident response

Our experienced incident response professionals assist with risk review, development of a crisis management plan and a robust incident response service.

Find out more

Our experience

We bring an evidence-based approach to our work with a strong emphasis on action and results. 

Ransomware response and recovery

Our client suffered from a significant ransomware attack. They engaged KordaMentha to lead the incident response and work with their information security team to gain visibility over the incident.

Preliminary analysis identified that the attack vector was still open and active. We were able to secure the network and the client’s data from further unauthorised access and compromise.

We worked with our client to restore data that was encrypted and deleted, ensured business continuity was achieved and provided ongoing support regarding key cybersecurity risks discovered during the incident response investigation.