We respond and inform in rapid time, to ensure any potential vulnerabilities do not make large impacts on the organization. Following the intrusion detection stage and discovery of vulnerabilities, analysts are in our SOC (Security Operations Center) on a 24/7/365 basis to respond and inform on any incoming threats. Incident response is all about a quick resolution.
Any alarm with a high-level risk will have a 1-2 hour response time. Analysts will alert the clients technical team with details of the event and recommended course of action. An alarm with a medium risk level will prompt a notification within 48-72 hours.
Best Practice Metrics
Our incident response procedures and metrics developed by in-house experts allow for rapid notification on any harmful events effecting your systems, allowing remediation to begin to optimize the time it takes to restore your organizations systems.