In a typical security incident, most organizations waste precious time trying to locate a firm that has the experience, expertise and available resources to assist with containing and remediating your security incident. Even if you do get lucky and find such a firm, you’ll waste even more valuable time bringing the new firm up to speed on your environment. Meanwhile the bad actors are getting deeper and deeper into your organization either extracting the crown jewels or laying the groundwork for future attacks.
With TBG’s Incident Response Retainer your organization will be better prepared to deal with any security incident in the timeliest manner possible with the greatest chance of success.
Our Incident Response Retainer Program assumes you have an Incident Response Plan in place. If you find yourself without an IRP, don’t fret, we’ll be happy to create your Incident Response Plan. Our Incident Response Plan Creation Services can be found here.
With our Incident Response plan, unlike other providers, you don’t pay to have us sit on the bench and wait for an event to happen. On a quarterly basis we provide the following services.
During the IR Hunt, TBG consultants will use automated and manual approaches to identify indicators of malicious activities to provide you with an awareness of the overall security posture of your computing environment and indicators your systems have been compromised. During a threat hunt, breach investigators and TBG consultants examine your computing environment, including workstations, laptops, servers, logs and network traffic. Using manual and automated tools, our experts identify threats including those that frequently bypass standard security controls, such as antivirus and intrusion detection tools. At the end of the hunt TBG will provide you with a detailed report of our findings and threats identified in your environment.
The Tabletop Exercise are designed to evaluate the tools, processes and expertise your organization uses to respond to cyber attacks. Working with your team, TBG consultants will conduct a simulated real-world situation lead by a TBG facilitator, where your team can interact to events as they unfold in a classroom setting. Typically, the participants represent key areas that would be affected by an incident. This fully inclusive exercise provides critical feedback on your incident response strategies and areas of risk in a tabletop environment. At the end of the exercise TBG will provide a post-action report with a timeline of events, detailed analysis of activities and strategic recommendations for improving detection, response, containment of the incident.
Here are just some of our Certifications: