Cybersecurity and Privacy - Protect your business

In today's business world it's difficult to find an area that has not yet been touched by the unstoppable advance of the digital wave.

Businesses now operate in an interconnected world and rely on digital technologies that bring along new and advanced threats. Are you aware of the risks your company might face? Are you ready to react in case of a security incident?

We help you create a secure environment to make sure your business is resilient in case of an attack.

What you need to do

  • Align your cybersecurity strategy with your business objectives.
  • Be aware of your own risk exposure to set the right priorities and find out where to best apply controls according to your operational model and business objectives (you can't secure everything).
  • Assess regularly your security controls.
  • Assess whether and how your business partner's risks could affect you.
  • Build and maintain a secure culture where people are aware of their impact to the global security level of your company.
  • Develop and test your incident response plan to enable rapid detection and efficient containment when your company will be targeted (it's not a matter of "if", but of "when").
  • Comply with the latest laws and regulations.

How we can help

  • Assess and benchmark our clients' cybersecurity maturity level using our cybersecurity framework, and develop their cyber security strategic plan.
  • We'll help you set up your ISMS (Information Security Management System), BCMS (Business Continuity Management System) and Risk Management framework for your company, all in line with your business objectives and international standards (e.g. ISO 27001, ISO 22301, ISO 27005...).
  • We'll point out the risks specific to your environment and propose prioritised mitigation measures.
  • We'll perform a detailed Threat and Vulnerability Assessment, to check for gaps, and help you strengthen your global security level.
  • We'll help you establish a comprehensive gap analysis that will benchmark your security measures against industry standards, best practices and Regulation, and highlight any areas that need improvement.
  • We'll help you define your monitoring and detection infrastructure together with your incident responsible plan.
  • We'll design a security awareness program and hold training sessions for your employees.

Examples of past missions

  • Assessment of the maturity of the client's capabilities in cybersecurity against a standardised PwC assessment methodology, based on industry standards, good practices (e.g. NIST, ISO 27001/2, COBIT), and definition of a security roadmap.
  • We successfully assisted clients in implementing an Information Security Management System (ISMS), and helped them define and develop a framework of security policies based on ISO 27000 standards.
  • We defined and implemented risk management processes.
  • We performed risk assessments and recommended additional security measures.
  • We assessed the cybersecurity governance of our clients and defined security roadmaps to enhance their global security level, in line with their business objectives.
  • We performed tailored vulnerability assessment reviews.
  • We organised training sessions to raise awareness on cybersecurity issues.
  • We assessed providers of our clients to ensure that security measures are enforced and in line with our client's security strategy.


{{contentList.dataService.numberHits}} {{contentList.dataService.numberHits == 1 ? 'result' : 'results'}}


{{contentList.dataService.numberHits}} {{contentList.dataService.numberHits == 1 ? 'result' : 'results'}}

Contact us

Vincent Villers

Cybersecurity Leader, PwC Luxembourg

Tel: +352 49 48 48 2367

Greg Pitzer

Cybersecurity Leader, PwC Luxembourg

Tel: +352 49 48 48 2068

Frédéric Vonner

Privacy Leader, PwC Luxembourg

Tel: +352 49 48 48 4173

Follow us