The latest statistics (2019 Ponemon Institute Cost of Data Breach Report) shows that the average cost of a security incident is high ($3.86 million), and that it does not vary much based-on organization size. The cost of an incident has multiple components, from business loss (direct damage to sales/profits, reputation, customer churn, etc.) to the very sizeable cost of post-incident repair.
Experience also shows that having a reliable incident response capability is the most effective cost reduction measure that you can employ during an incident, but also that incident response capability need to be in place before such incidents occur.
Incident handling is not only about containing the incident, but also being able to restore the operation of the business. We at Conscia are more than 500 skilled engineers, experts at building secure infrastructure, and provide managed incident response services tailored to each of our customers.
After an incident has been reported or confirmed, incident response services provide a fast and efficient process to prevent, limit, and/or contain the incident, and repair the resulting damage. Incident response services are tailored to each customer and performed by an expert incident response team.
- Containment Services: These services provide our customers with a containment plan for each incident: a recipe of recommended actions required to limit the business damage and spread of the current incident. This plan is tailored to the capabilities and environment of the customer.
- Remediation Services: Remediatoin services provide our customers with containment services, with the addition of a remediation for each incident. A remediation plan includes a sequence of recommended actions required to reverse the technical damage of the incident, to repair affected assets, and to prevent the same incident from occurring in the future. These services can be provided remotely (phone, videoconference, IM, etc.) or on the customer site, with our experts working to resolve the incident in concert with the customer personnel.
- Post-Incident Services: When additional post-incident investigation is required, either to determine the true scope of the incident, the true cause of the incident, to analyse the quality of remediation/eradication, or to provide other detailed investigative services, specialized digital forensics personnel is involved in incident response to provide those capabilities. Conscia provides forensic services to examine executables (malware), memory/images/filesystems, and network traffic (raw packets, metadata and logs) to extract information and behavioural characteristics.
Conscia managed incident response services are part of the Conscia SOC, a state-of-the-art managed detection and response services. Our incident response services are available to both our managed SOC customers, as well as on-demand to organizations with current on-going incidents.
Safer financial systems with Cisco
Cinnober is one of the world’s leading developers and providers of mission critical trading and clearing systems for stock exchanges, banks and clearing houses. Cinnober’s network is based on Cisco switches and a software defined architecture.
to SIEM or not to SIEM
One of the best tools in our detection catalogue is the SIEM. I believe that the SIEM industry has matured quite a lot during the last decade and so have the partners working with SIEM.
First line of defense with DNS Security
Wouldn’t it be great if you could protect the equipment in your network before connecting to the Internet! You have already taken the necessary measures. Still, it feels like something is still missing when it comes to the protection of your equipment …
For organisations aiming to stay ahead, choosing the right Data Center and Multicloud solutions is crucial.
Cyber Security is not only about avoiding risk. If done right, a security setup also helps the business stay ahead.
The network touches basically everything in any company. This makes it an ideal platform for improving security as well as business efficiency.
In the age of mobile and cloud, information should be available to employees on any device and in any place.