.svg){kind=small}
.svg){kind=small}
In the event of a breach, contact us immediately on one of these emergency numbers. They are available 24/7.
You will receive immediate support and be guided through a step-by-step approach. Let us guide you.
Our team is second to none
- We have a dedicated team for emergency response
- We investigate and solve hundreds of cases every year
- Our work is incredibly diverse, from small organizations to global enterprises
- All our incident responders have at least 6 years of specialized experience
- Our capabilities have been independently assessed and validated
- We are members of FIRST, the global forum for incident response and security teams, read more here
- We are NCSC Assured in Incident Response, read more here
Your first step is to get in touch with us – the experts
The moment your organization is hit by an incident, you need the ability to take key decisions quickly and get the situation under control.
Common mistakes organizations make:
- Taking the entire network offline.
- Formatting computers that are visibly affected
- Communicating first impressions internally and externally
- Trusting already-deployed security products for data about the breach
- Failing to investigate an incident
Taking the right decisions will pave the way toward rapid and robust recovery.
Taking the wrong decisions will invariably lead to more work, more costs and, likely, a failed clean-up job.
Follow our tried and tested process
Our Emergency Response process is based on the SANS Institute model, though adapted based on our experience.
Our intervention ensures our customers are guided expertly through a structured process, including these activities:
- Management of the case process
- Guidance on containment
- Advice and direction, e.g., on back-ups and data restoration
- Incident investigation, i.e., what, when, how and who
- Data theft investigation, including nature of it and volume
- Documentation, including management and technical
- Advice on other actions to take
- 3rd party liaison: legal advisors, insurance provider, PR agency, law enforcement, hosting company, IT service company, other.
Ensure you get the right insights
Our Emergency Response Consultants will work unrelentingly to answer four key questions. These are the questions that you need to have answered to ensure you address the root cause of the breach.
The answer to this is not necessarily obvious and when identified incorrectly, repeat breaches tend to happen.
This is crucial to establish to ensure you manage your risk exposure and engage with the appropriate stakeholders.
Experience tells us that companies are often unaware of the presence of attackers for many weeks or even months. It is imperative to trace the incident right back to its earliest root.
There can be important lessons and insights regarding your risk exposure based on understanding the nature of the attacker.
”CSIS’s incident response capability – the people and the technology used – is best-in-class. The team’s depth of technical knowledge, work ethos and collaborative nature are commendable, as is their ability to take the lead. I consider them a trust partner.”
“The CSIS team delivered exceptional value while supporting us in working through a sensitive and complex cyber investigation. Their people, proprietary tools and impressive process competencies enabled us to work at an unparalleled pace. We expect to work with world-class partners and CSIS definitely lived up to that expectation.”
”We contacted CSIS at a critical time for the company because we were experiencing a severe security incident. They responded immediately and their intervention was fast, decisive, and effective. Thanks to CSIS, we were able to understand the nature of the issue and resolve it. Since then, we have engaged them on a retainer basis to ensure our resilience is constantly optimized.”
