Solutionary Critical Incident Response Services
Transcription
Solutionary Critical Incident Response Services
Solutionary Critical Incident Response Services Prove Preparedness and Minimize the Impact of Security Breaches The Solutionary Critical Incident Response Services (CIR) provide incident response planning and testing in addition to rapid response to minimize the impact of security incidents. All Critical Incident Response Services are delivered by the Solutionary Security Engineering Research Team (SERT). SERT includes certified security professionals with specific expertise in incident response, forensics, malware analysis and countermeasures. Limit the Impact of Attacks An organization’s ability to respond to a security incident is crucial to limiting the impact of the attack, minimizing response costs and recovering quickly. Planning and preparation are the keys to the successful resolution of a cyberattack. Knowing what to do and who to call when time matters can help to reduce the duration and mitigate the impact of an attack quickly. Planning and Testing in Advance Solutionary Critical Incident Response Services include prior planning, the integration of the Solutionary and client incident response teams and testing of the incident response plan. This will help ensure when an incident occurs, the response will be as efficient and effective as possible, with expert resources, proven processes and accessible log data. Testing activities include incident plus log data analysis to ensure necessary information is available. Solutionary Critical Incident Response Services clients have the peace of mind that comes from demonstrating to stakeholders—with third-party validation—that all necessary, reasonable steps have been taken in advance of an incident. Service Levels to Match Organizational Needs Solutionary Critical Incident Response is available at different service levels, to align with organizational and regulatory requirements. The Proactive and Concierge levels each include a guaranteed response time of two hours, inquiry and validation of suspected incidents, with coordination and management of the incident response. The Concierge level includes additional consulting hours and a series of roundtable / mentoring sessions with Solutionary SERT experts. Services are also available On-Demand, with as-soon-aspossible response time, without advance planning sessions. Prove Preparedness Most security frameworks and regulatory requirements necessitate organizations to have an IT security program and an incident response plan. Organizations that can prove the effectiveness of their incident response capability, including third-party validation, will not only meet requirements but will be seen by assessors and regulators as being truly serious about meeting their compliance commitments. Solutionary can provide clients with an Opinion Letter regarding the efficiency and effectiveness to identify and respond to a security incident. Leverage the Power of ActiveGuard® The patented, cloud-based ActiveGuard® Service Platform collects and correlates log event data, which is essential for threat detection. The combination of ActiveGuard, the 24/7 security operations center (SOC), SERT certified experts and proven preparedness allows seamless, coordinated execution of the incident response process. During the design of an incident response plan, Solutionary determines if the client’s current log monitoring is adequate, and whether additional security controls such as Solutionary Log Monitoring, based on ActiveGuard, helps ensure that proper security event logging is taking place. Solutionary Critical Incident Response Services features include (depending on service level): • Incident response testing • 24/7 incident response • Incident coordination and management • Incident analysis and mitigation • Data/image acquisition and forensic analysis • Incident reporting and documentation • Access to Solutionary SERT experts and research Prove Preparedness Creation/Update of Incident Response Plan Incident Response Plan Review and Integration Planning and Testing Incident Response Plan Testing Incident Response Plan Opinion Letter SERT Consulting and Mentoring Reduce the Impact Incident Inquiries and Validation Incident Mitigation and Containment Incident Response Coordination Critical Incident Response Incident Response Management Data/Image Acquisition Forensic Analysis Malware Analysis Law Enforcement Coordination Post Incident Expert Witness/Testimony Solutionary – The Next Generation Managed Security Services Provider Services are delivered to clients through multiple 24/7, fully redundant security operations centers (SOCs). SM The patented ActiveGuard® Security and Compliance Platform is the technology behind Solutionary services. ActiveGuard is able to accurately collect, analyze and ActiveGuard® Features Include: • Highly Configurable Compliance Platform • Built-In Heuristics and Anomaly Detection • Context-Aware Alerting • 24/7 Portal Access • View Status, Configurations and Change History • Global Threat Intelligence • Industry and Compliance Reporting • Customized Reporting • Evidence and Log Vault correlate vast amounts of data from virtually any application or device capable of producing a log file. This allows Solutionary to improve security while making it more efficient. Global Threat Intelligence – SERT The Solutionary Security Engineering Research Team (SERT) protects and informs Solutionary clients through security threat research, vulnerability analysis and the development of effective countermeasures. Get Started Today See how Solutionary can help optimize security, improve efficiency and ease compliance. Contact an authorized Solutionary partner or Solutionary directly. 866-333-2133 | info@solutionary.com | Solutionary.com Blue Pantone 287 Hex: 00529b C: 100 M: 68 Y: 0 K: 12 9420 Underwood Avenue Omaha, NE 68114 (866) 333 2133 www.solutionary.com Solutionary, an NTT Group security company, is the next generation managed security services provider (MSSP), focused on delivering managed security services and global threat intelligence. 888-80-InNet InNetworkTech.com