Newberry: Cyber Security: Cyber Security Services: Incident Response

Incident Response

Electronic Discovery

Regulatory Compliance
Assessment & Auditing

Security Architecture &
Engineering Consulting

Vulnerability Assessment

Penetration Testing

Security Program &
Policy Development

Certification & Accreditation

Information security incidents can leave an organization open to greater risk. This risk can lead to financial penalties, critical data loss, legal exposure, and bad publicity. This surge in risk can be mitigated with a timely and effective incident response.

At Newberry Group, we are highly experienced at containing and remedying information security incidents then closing the associated window of elevated risk. We have responded to incidents ranging from data breaches and insider fraud, to repeated intrusions from advanced persistent threats. While adept at assisting in small scale incident response, we have also led and served on numerous incident response teams for enterprise-scale incidents involving hundreds of compromised hosts and large volumes of stolen data. Our track record includes work with law firms, higher education, local and Federal government agencies, non-profits, and Fortune 500 Companies.

Our Incident Response services include:

Incident Response Management: We can manage all facets of your response to an incident to help you maximize effectiveness, minimize losses, and control cost.
Preparation: We can analyze your current response capabilities, plans, and preparedness and help you to bring your organization to a heightened state of readiness. This will ensure more rapid and effective response to future incidents and by extension, lower costs associated with security events.
Investigation: We can investigate an incident to determine the nature of the event, the scope of unauthorized activities, and a quantification of data losses and damage incurred.
Containment: We can plan and execute additional security measures designed to stop the spread of an incident and halt unauthorized activity, thereby preventing additional damage and loss.
Remediation: We can assist you in removing the damage of a security event and in assist you in returning your information systems to a state of trust so that you can resume operations.
Prevention: We can help you to reduce future risk by utilizing lessons learned from an incident to prevent similar events from occurring.
Technical Support: We can perform specific technical tasks to support your incident response efforts, ranging from the forensic analysis of potentially compromised systems and malicious code to network monitoring.