•  Oxford: +44 (0)1865 877830 
  • Manchester: +44 (0)161 713 0176 
  •  London: +44 (0)203 5983740 
  •  New York: +1 646-781-7580 
  • Dubai: +971 (0)4 427 0429

Cyber Security Incident Response

You are here

Cyber Security Incident Response (CSIR) encompasses a number of different disciplines, including digital forensics, business continuity and information security management. Dionach are able to offer our customers a comprehensive and professional service through which incidents can be planned for, managed, and responded to, effectively and quickly. We provide this service through our unique blend of technical experience, including penetration testing, auditing, software development and project management, and our intimate knowledge of business processes and operational management across all sectors. Key examples of the areas in which Dionach can support your organisation include:

Preparedness

Incident Response Preparedness It is increasingly important for organisations to have procedures in place to handle a Cyber Security incident should it happen. Also having the right information and contacts to be able to escalate a situation correctly and respond to any attack. Dionach can work with your staff and relevant stakeholders to review your current level of preparedness with a view to ensuring that any incident is handled efficiently and the right resources are in place to provide an adequate response. As part of this process we can support the implementation of incident response plans and internal information security management policies and procedures.

Incident Response

Initial Incident Response Dionach’s clients rely on Dionach to be able to respond quickly to any potential breach, compromise or general cyber security incident. Dionach are often called upon at short notice to investigate a suspected breach or security incident and to provide guidance and support throughout the process of containing, eradicating, and recovering from the incident. Forensic Investigation & and Data Analysis Dionach can provide detailed analysis of evidence relevant to the incident, in order to ensure that responses are appropriate, recovery efforts are effective, and strategic processes implemented to prevent recurrence. Dionach will provide detailed reports offering a clear timeline of events leading to the incident, including executive summary recommendations on how to address any vulnerabilities in systems or processes which lead to the incident occurring. Recovery and Remediation Dionach consultants can work alongside your staff, where required, to remediate and recover from the incident. This can sometimes be a simple as isolating and rebuilding a single workstation. Other times this can be a complex strategy affecting many systems, and requiring extensive changes to system architecture or information security management processes. Dionach will assemble a team, specifically qualified to handle your requirements. Post incident Consultancy Dionach can offer ongoing consultancy based upon further review of the client’s systems in light of any security incident to ensure that lessons are learnt and any similar weaknesses are highlighted and addressed. This could take the form of auditing, penetration testing or other supporting services as appropriate. Example of types of work Dionach have been involved with include:

  • Analysis of malware or suspicious network traffic discovered within a network
  • Analysis of a compromised web application or network
  • Forensic collection of evidence, post breach
  • Assistance with establishing the extent of compromise of a breach, with recommendations for remediation

Dionach has been providing incident response and forensic investigation services for many years, and are always looking to improve our services. Dionach provide incident response services following guidelines from CREST and NCSC, which are regularly updated.