Leading Source for UK Technology News & Insights

Digital Forensics & Incident Response

  • Home
  • Digital Forensics & Incident Response

Digital Forensics & Incident Response

1. Incident Response

What We Do

Primarily we respond to following types of intrusions:

  1. Rogue activity inside enterprise network or infrastructure
  2. Theft of data, PII or intellectual property
  3. Sabotage or destruction
  4. Insider threats
  5. Financial crime
We Cover
  1. Log Anlaysis
  2. Host Forensics
  3. Memory Forensics
  4. Network Forensics
  5. Malware Analysis
Engagement & Pricing Model
  1. One-Time Response
  2. Priced Hourly
  3. Retainer
  4. Priced per 50+hour quarterly bucket

2. Compromise Assessment Service

We Cover
  1. Organization-wide IOC hunting
  2. Clue-based deep dive
  3. Network traffic analysis

In the case where a compromise is identified, we have the ability to quickly pivot from compromise assessment to incident response (on customer’s discretion

Engagement &  Pricing Model
  1. One Time Assessment
  2. Priced on Number of Assets

A thorough assessment whether you got compromised or not?

3. Incident Readiness Drills

What We Do

Test your organization’s defense with a simulated scenario just like a real cyber-attack. We utilize our knowledge of responding to intrusions to create adversary or scenario specific simulations and then run them against your infrastructure to identify gaps and mitigate them before you actually face an incident
Our Belief
“The more you sweat in training, the lesser you bleed in battle !”

Engagement & Pricing Model

Bi-Annual Drills

Priced Per Drill (2 weeks of engagement per drill)

Quarterly Drills

Priced Per Drill (2 weeks of engagement per drill)

Knowledge of your enemy’s offensive capability, determines the strength of your defense

4. Incident Readiness Service

We assess the readiness of your organization against future incidents with a 360-degree perspective of security.

We Assess

Strategic Capability

- Maturity of your incident response plan

- Response procedures, roles and policies

- Maturity of response team and its layers of defense

Operational Capability

- Ability to investigate and respond from a single point

- Ability to investigate at scale

- Level of visibility inside host and network telemetry

Our Belief
“You cannot protect what you don’t know!”

Engagement & Pricing Model

One-Time Assessment

Priced Per Engagement

Add-Ons include

  1. Assistance in creation of Information Security Policy
  2. Assistance in creation of Incident Response Plan
  3. Assistance in creation of Response Playbooks