Texture Side Right Grey 05

Cyber Defense Center Development

Design and grow a security operations program to defend against advanced threat actors

The goal of the Cyber Defense Center Development service is to help you better manage your security process and successfully resolve future cyber threats. To achieve this, the Cyber Defense Center Development service draws on extensive Mandiant consultancy experience to help you expand or build your own computer incident response team or security operations center.

Cyber Defense Center Development


The Cyber Defense Center Development service maps directly to your strategic goals and delivers recommendations grounded in the first-hand experience of Mandiant consultants. Our consultants work closely with your organization to implement critical updates to your security program and support an Adaptive Defense strategy. The framework used by Cyber Defense Center Development consists of five core capabilities that are essential to a resilient security program.



Does your organizational structure align with your organization's overall business goals and mission statement?



Do you have processes in place to promote effective information sharing between internal and external entities?



Are technologies and processes in place to let you see what is happening on your systems and networks?



Does your threat intelligence inform and enhance security planning, vulnerability management, and incident response activities?



Do your incident response metrics align with overall business goals and objectives while driving continuous improvement within the security organization?

What you get

  • Techniques for categorizing incidents
  • Incident playbook
  • Best practices overview
  • Recommendations and roadmap


M-Trends is an annual publication from FireEye Mandiant that contains insights based on frontline investigations of the most interesting and impactful cyber attacks of the year.

Download report


”We have to constantly evolve our security programs to keep up with the ever-changing threat landscape. This means treating our security programs as an evolving process and implementing safeguards — not just best practices — to protect against attacker activity.“

- M-Trends


M-Trends 2017 Infographic
Explore the trends and get statistics based on Mandiant’s investigation of the year’s successful breaches and cyber attacks across the globe.

Our Approach

During the Cyber Defense Center Development process, our consultants work with your team to build and implement core foundational technologies and processes into your SOC or CIRT. They also help monitor security concerns until your staff is equipped to assume total ownership over these technologies and processes.

Build a foundation

We establish a base capability level to support effective incident response and efficient resource application. This foundational support includes the implementation of tailored processes, such as an escalation matrix and incident response workflow. Our consultants also help establish performance metrics and reporting plans, which are essential to maturing your incident response capability.

Integrate processes and technologies

We work with your team to incorporate updated processes, procedures and technology within your SOC or CIRT. This integration support includes developing and delivering tailored training material, establishing operational service level agreements, and deploying and configuring required technologies.


In this final phase of the Cyber Defense Center Development process, Mandiant helps you implement operational and analytical processes and develop initial monitoring capabilities. Our consultants continue to support your requirements until all responsibilities can be fully handled by your team.

Ready to get started?

Our security experts are standing by to help you with an incident or answer questions about our
consulting and managed detection and response services.

+1 888-227-2721 +61 281034308 +32 28962867 +1 877-347-3393 +971 45501444 +358 942451151 +33 170612726 +49 35185034500 +852 3975-1882 +91 80 6671 1566 +353 (0)216019160 +39 0294750535 +81 3 4577 4401 +03 77248276 +52 5585268207 +31 207941289 +64 32880234 +48 223072296 +7 4954658084 +65 31585101 +27 105008408 +82 7076860238 +34 932203202 +94 788155851 +46 853520870 +886 2-5551-1268 +27873392 +44 2036087538 +842444581914