The client, a UK pension scheme with over 300,000 members holding over £20 billion in assets, required external specialist advice to shape its cyber governance strategy and raise its resilience against the emerging threat of cyber attacks, while meeting industry regulator standards.
We worked with the Trustee and scheme management to understand the unique risks faced across the client’s full eco-system, including its reliance on suppliers to deliver its operations.
Using an industry leading cyber security framework we were able to identify the pension scheme’s current cyber maturity, including that of the sponsoring employer who supported it with technology, alongside its key suppliers.
We then risk rated the identified gaps and developed actionable recommendations for leadership to raise standards across a number of governance, technology, people and incident response areas. Policy development then followed and cyber awareness and incident response training that was unique to the client and its industry was delivered, raising resilience and arming the scheme with the skills and direction to protect itself.
A long-term advisor relationship has since been established, supporting the client with annual assurance work to meet regulator expectations and keep the pension scheme ahead of emerging risks.