Incident Response

Incident response is the current buzz-phrase in Information Security. It relates to building a ‘preparedness & reactive’ function into an organisation for managing events as they occur.

Many companies are not well organised when dealing with security incidents and do not prepare and test approporate response actions that may help them to better evaluate their options. These organisations risk a maximum loss when security incidents happen.

The International Standards Organisation (ISO) has recognised that there is a need to be pro-active and has built the requirement for Incident Response into the Information Security Management standard ISO/IEC 27001.

QCC have been involved with Incident Response since 1996 and have actively advised both BSI and ISO about incident response best practice.

Our clients for whom we have developed capabilities in this arena are now experiencing: reductions in incident volumes, improvement in reaction and closure times, and with a pre-planned communications strategy, are able to ensure reputational damage & business losses are minimised.

Our Incident Response Services deliver:

• Immediate telephone support and guidance when an incident occurs.
• Rapid analysis of the potential causes of the security incident and execution of the appropriate response procedures.
• Full on-site assistance with a range of security specialists who are sensitive to your organisation and highly experienced in emergency planning, senior management briefing, information technology & IT security, investigations, interviewing and systems recovery.
• Comprehensive in-house digital forensics capability.
• High-clarity training for your staff in incident response techniques.
• Strict confidentiality under non-disclosure agreements.