Cyber Risk Services

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks.

Our services

Our flexible, pragmatic and independent approach to managing cyber security means that we work with organisations – from network to boardroom – to address constantly changing threats. We ensure that our clients can continue to take advantage of the benefits of digital business without worrying about the potential pitfalls.


Cyber Strategy

We help executives develop a cyber risk program in line with the strategic objectives and risk appetite of the organization.

  • Cyber Risk Management and Compliance
    Understanding the current status of an organization’s security posture requires constant evaluation of evolving risks, security standards and cyber regulations. Today’s complex and distributed IT landscape and third-party involvement means organizations must take a structured approach to understanding the road ahead.
  • Cyber Strategy, Transformation and Assessments
    In today’s complex business environment and with cyberattacks occurring with greater frequency and severity, you, as board members and executives are increasingly becoming aware that technology-based initiatives open doors to cyber risks. The need to act is known but what to do, the scale to do it, and in what order, then becomes key to continue to enable secure, available and trusted operations.



We focus on establishing effective controls around the organization’s most sensitive assets and balancing the need to reduce risk, while enabling productivity, business growth, and cost optimization objectives.

  • Phishing as a Service
    In 2016, at least 15 percent of the total cyber-attacks involved phishing which is the first step in the chain of attack. Are you prepared to respond? What can you do to improve your phishing resilience?
  • Identity & Access Management
    Bring Identity Relationships under explicit management control through solutions providing business alignment, risk mitigation and cost control
  • Infrastructure and Operations Security
    Defend against and limit the impact of a cyber attack through the evaluation, architecture and implementation of operational security processes



We integrate threat data, IT data, and business data to equip security teams with context-rich intelligence to proactively detect and manage cyber threats and respond more effectively to cyber incidents. 

  • Vulnerability Management
    Defend against and limit the impact of a cyber attack through security assessment and remediation of IT infrastructure, software applications and wireless/mobile devices, including intrusion testing/penetration testing



We combine proven proactive and reactive incident management processes and technologies to rapidly adapt and respond to cyber disruptions whether from internal or external forces.

  • Business Continuity Management
    Assist in organisation resilience by designing, implementing, maintaining and testing business continuity plans
  • Incident Response & Forensics
    Defending against and limit the impact of a cyber attack through readiness assessment and supporting response to security incidents, including computer forensics

A global network of Cyber Intelligence Centers

As cyber threats evolve and become more complex, many business leaders recognize they can’t manage the challenge alone. That’s why Deloitte offers a global network of Cyber Intelligence Centers (CICs), operating around the clock, 365 days of the year. Our CICs provide fully customizable managed security solutions including advanced security event monitoring, threat analytics, cyber threat management, and incident response for businesses in the region to meet the increasing market demand in cybersecurity services.

Get in touch

Stéphane Hurtaud

Stéphane Hurtaud

Partner | Cyber Security Leader

Stéphane is a partner within our Risk Advisory practice. He has over 21 years of experience in the IT risk, Information Security and IT audit fields, with a strong focus on the financial services indu... More

Maxime Verac

Maxime Verac

Director | Information & Technology Risk

Maxime Verac is a Director within Deloitte’s Information & Technology Risk services in Luxembourg. He has 12 years of experience in Information Security. During the last 12 years, as a consultant, he ... More