Benjamin Franklin said, “By failing to prepare, you are preparing to fail.” When it comes to incident response services, preparation can be challenging. Dozens of incident response (IR) providers – security product companies, consultancy firms, cloud providers and managed security services providers (MSSPs) – offer different flavors of IR, with different quality, pricing, tools and expertise. It’s not surprising that buyers are confused about what they’re getting. Free and unlimited offers further muddy the waters.
Recent research underscores the importance of expediting incident response actions and mitigating potential damage:
Let’s make it easier for you to evaluate the breadth and depth of IR services by exploring three important yet potentially obscure aspects of IR.
Other IR discussion topics include incident readiness, at-scale response, communications and unused retainer dollars. Additionally, find out where IR services land on the spectrum of basic response to comprehensive, holistic response and how they align with your requirements. All of these topics are covered in “8 Questions That Cut Through the Lingo of Cybersecurity Incident Response,” which provides a list of questions helpful for navigating the confusion surrounding IR.
Learn more about IR nuances by exploring resources such as NIST, ISO, HIPAA and the Cybersecurity Maturity Model Certification. It’s safe to assume that governments and industries will tighten up IR and create more stringent reporting requirements. Incident providers incorporate industry standards into their offerings in different ways. Some are better positioned than others to adapt to new policies and procedures.
If you want to talk about IR best practices, contact us. We’ll focus on your requirements, risk tolerance, security maturity and other aspects of customized incident response services.