AMSTERDAM – BANGKOK – BRUSSELS – HONG KONG – LILLE – LONDON – LOS ANGELES – MILAN – MONTREAL – PARIS – SINGAPORE – TORONTO – WASHINGTON
Connect with us
CS&A Crisis Management Solutions

All Posts

Picture of Caroline Sapriel

Caroline Sapriel

Why crisis leadership competencies matter in the effective management of a cyber crisis

This article was published in Cyber Security: A Peer-Reviewed Journal Vol. 8, 2 160–168 (2024)

Abstract

This paper examines whether specific leadership competencies are relevant in a cyber crisis and what it takes to manage one effectively. Our increasing dependence on technology exposes us to risks and makes us more vulnerable to digital crises.

Cyberattacks are more common and can affect even well-prepared companies. Leadership during a crisis can influence an organisation’s success or failure, no matter how primed and savvy its people are.

The author compares crisis management to crisis leadership and emphasises the shift from operational response to prevention and the ability to steer through uncertainty. This change requires crisis-specific leadership skills and broader recognition of organisational risk.

The author highlights research by Wooten and James, noting leadership competencies applicable to different phases of a crisis.

Leaders can learn, develop and practise competencies needed to survive and succeed in a crisis. Tools include stakeholder mapping and training in both hard and soft skills.

The author also refers to Salviotti et al (2023), showing that traditional crisis leadership skills also apply in cyber crises.

INTRODUCTION

Being prepared for a cyber crisis is increasingly important. Our reliance on technology exposes us to risks and vulnerabilities. Digital transformation affects how we live, work, and interact globally.

Threats such as AI-driven disinformation, ransomware, malware, and data leaks are rising, increasing exposure to crises.

NAVIGATING THE RISING TIDE OF CYBER THREATS

According to the Global Risks Report, misinformation, cyber insecurity, and AI-related risks are among the most severe threats globally.

Cybercrime is growing rapidly, especially in developing regions, exposing businesses to reputational and regulatory risks.

Cyberattacks are becoming more sophisticated. The ENISA Threat Landscape identifies ransomware, malware, social engineering, and supply chain attacks as key threats.

Hacktivism is also increasing. Groups like Anonymous have targeted organisations such as Visa, Mastercard, Amazon and PayPal to promote political causes.

FACING THE INEVITABLE REALITY OF A CYBERATTACK

Cyberattacks can affect even well-prepared organisations. Strong leadership is essential to navigate uncertainty, make decisions under pressure, and communicate effectively.

Proactive crisis prevention and planning are critical. Research shows that many crises can be detected early and mitigated before escalation.

CRISIS MANAGEMENT VERSUS CRISIS LEADERSHIP

Crisis management focuses on preparation, response, and recovery, while crisis leadership involves navigating uncertainty and making strategic decisions at all stages.

Experts note a shift toward executive responsibility in crisis management, known as crisis proofing.

THE DOs AND DON’TS OF HOW TO REACT TO A CYBER CRISIS

James and Wooten highlight that leadership quality determines crisis outcomes more than the crisis itself.

A strong example is Norsk Hydro, which handled a ransomware attack transparently and effectively.

In contrast, responses like Optus data breach showed weaker crisis communication strategies.

LEADERSHIP COMPETENCIES IN CRISIS MANAGEMENT

Effective crisis leadership requires communication, trust, strategic thinking, and coordination across teams.

Research shows that organisations that respond poorly to cyberattacks suffer significantly higher losses than those that respond quickly and transparently.

Stakeholder mapping and transparent communication are essential to maintain trust during crises.

LEADERSHIP COMPETENCIES FOR EACH CRISIS PHASE

Different crisis phases require different leadership skills:

Signal detection – sense making and perspective taking

Preparation – creativity, agility, and issue awareness

Containment – decision-making, communication, risk-taking

Recovery – integrity and resilience

Learning – continuous improvement and reflection

See full study: Leadership competencies in crisis management

TRAINING COMPETENCIES TO HELP SURVIVE AND TRIUMPH IN A CRISIS

Crisis leadership plays a critical role in organisational success. Clear communication prevents misinformation and builds trust.

Key leadership qualities include empathy, decision-making under pressure, responsibility, and adaptability.

The goal is not only to survive a crisis but to emerge stronger through effective leadership and preparation.

Recent Posts

See All

AI is powering the future of energy — handle with care

  • 28
  • 0

When human savvy meets machine intelligence

  • 28
  • 0

Never waste a crisis

  • 28
  • 0