Cybersecurity & Ransomware Response Strategy
Client: Los Angeles World Airports (LAWA)
Partner:Ross & Baruzzini, Inc. and Fortalice Solutions, LLC
Partner: Ross & Baruzzini, Inc. and Fortalice Solutions, LLC
• Project Leadership
• Single Point of Contact (SPOC)
Cybersecurity & Ransomware Response Strategy
E.K Associates, in collaboration with Ross & Baruzzini and Fortalice Solutions, was engaged by Los Angeles World Airports to modernize LAWA’s Incident Response (IR) posture and ensure the organization was fully equipped to respond to today’s most sophisticated cyber threats — specifically ransomware.
Our team led the refinement of LAWA’s enterprise Incident Response strategy, facilitated executive-level tabletop exercises, and delivered a comprehensive ransomware assessment and decision tree to support fast, informed, and coordinated response actions. This work elevated LAWA’s ability to assess risk, manage disruption, and communicate effectively during high-impact cybersecurity incidents.
The E.K Advantage
Modernized Incident Response Preparedness
We reviewed, assessed, and updated LAWA’s Information Security and Operational IR plans to ensure they addressed modern ransomware attack patterns, regulatory expectations, and enterprise coordination requirements.
Executive-Level Ransomware Tabletop Exercises
E.K planned and executed a live, onsite ransomware response simulation with senior LAWA leadership. The exercise tested communications, decision-making, operational coordination, and consequence-management scenarios — not just technical response activities.
A Clear, Actionable Ransomware Assessment & Decision Tree
We delivered a structured, operationally practical decision tree that helped LAWA classify ransomware incidents, determine impact severity, evaluate risk, and choose the appropriate response path.
Cross-Functional Alignment Across Security, IT, Operations & Leadership
Our work unified teams across the organization, ensuring consistent interpretation of ransomware activity, clear escalation paths, and well-defined communication responsibilities.
Key Features & Work Performed
IR Plan Review, Updates & Refinement
E.K Associates:
Evaluated LAWA’s existing Incident Response plans
Updated the Information Security IR plan with ransomware-specific actions
Ensured alignment between Security IR and Operations IR procedures
Standardized escalation, coordination, and activation processes
Outcome:
A modernized IR strategy that more accurately reflected the threat landscape and LAWA’s operational complexity.
Ransomware Assessment & Decision Tree Development
E.K Delivered:
A classification model defining what constitutes a ransomware attack
An impact assessment framework identifying potential consequences for LAWA
A breakdown of key ransomware entry risks and mitigation controls
A decision tree guiding real-time response choices during an incident
Outcome:
A single, authoritative reference enabling LAWA teams to respond quickly, consistently, and defensibly during ransomware events.
Ransomware Tabletop Exercise (Live Onsite Simulation)
Our Team:
Designed a ransomware scenario modeled after real-world attack patterns
Facilitated the simulation with senior leaders and operational teams
Evaluated communication flows, decision points & role clarity
Assessed consequence risk — including reputational, operational & financial impacts
Captured strengths, gaps, and opportunities for improvement
Outcome:
Enhanced executive and operational readiness, with clearer communication, faster escalation, and improved cross-team coordination.
Final Reporting, Recommendations & Executive Summary
The final package included:
A detailed evaluation of LAWA’s ransomware readiness
Findings from the tabletop exercise
Recommended control enhancements and mitigation strategies
The enterprise Ransomware Assessment & Decision Tree
A roadmap for strengthening future cybersecurity posture
Outcome:
A clear, actionable plan for ongoing cybersecurity maturity and organizational preparedness.
Impact Delivered
✔ A modernized, ransomware-focused Incident Response program
✔ A decision-making framework that accelerated response and reduced uncertainty
✔ Greater operational resilience and reduced exposure to high-impact threats
✔ Stronger communication and coordination across leadership, IT, and operations
✔ A repeatable exercise model to sustain long-term cybersecurity readiness
Strategic insights enabling LAWA to continually evolve its cyber defense posture
