Incident Response Retainer
Reduce your incident response time and minimize incident impact
Let us watch your back. The Mandiant Incident Response Retainer (IRR) allows you to respond faster and more effectively to cyber incidents. Together, we establish the terms and conditions for Mandiant incident response (IR) services before an incident occurs.
If a cyber–incident occurs, your first incident response call focuses on action, not negotiation.
RAMP UP YOUR RESPONSE READINESS
When you call on the Mandiant IR team through the retainer service, they get to work right away. They analyze your systems to identify the nature of any suspected malicious activity, the initial attack vector and the earliest evidence of any compromise. They also apply any and all available contextual intelligence to give you a complete, detailed understanding of what threats you may face.
CHOICE AND FLEXIBILITY
The three tiers of the Incident Response Retainer service are each designed to suit different needs and budgets. All three tiers provide access to a 24/7 service request hotline/email and Mandiant IR support.
Tier 1 - No Upfront Costs
- Establish terms and conditions for Mandiant Incident Response (IR) services you might need in the event of a cyber incident.
- Define hourly rates for all incident response-related services and technologies.
Tier 1 has no minimum financial commitment or annual cost. Costs are only incurred if you engage Mandiant Incident Response services. Support is based on best effort and current availability. There is no guaranteed service level agreement (SLA) for this tier. Learn more about our $0 Incident Response Retainer.
Tier 2 – Prepaid hours and service level commitment
- Establish the terms, conditions and rates for Mandiant Incident Response services.
- Gain peace of mind with an SLA that provides a first responder (after declaration acceptance) within 24 hours.
- Prepay for a block of Mandiant support hours.
- Purchase additional support hours at a discounted rate.
- Access the Mandiant technology stack.
- Work with Mandiant experts to evaluate and improve your current incident preparedness and response capabilities.
Tier 3 – Prepaid services and service level commitment
- Establish the terms, conditions and rates for Mandiant Incident Response services.
- Gain peace of mind with an SLA that provides a first responder (after declaration acceptance) within 24 hours.
- Prepay for a customizable set of Mandiant consulting services.
- Purchase Mandiant incident response support hours at our lowest rate.
- Access the Mandiant technology stack.
- Work with Mandiant experts to evaluate and improve your current incident preparedness and response capabilities.
Benefits·
- Pre-negotiated contractual terms for rapid response when it matters most
- Guaranteed response times for prepaid tiers
- Discounts on IR services and support
- Access to elite Mandiant security experts and technologies
- Evaluate and improve your current incident preparedness and response capabilities.
Incident Response Retainer Solution Brief
An overview of how a retainer for incident response services improves your ability to respond effectively to advanced attacks.
On-Demand Webinar - Breach Readiness: Next Generation of Incident Preparedness
This eye-opening webinar discusses what it takes to be breach-ready and how being proactive in your incident preparedness can save you financially.
| Feature | Tier 1 | Tier 2 | Tier 3 |
|---|---|---|---|
| Prenegotiated terms and conditions for IR services | Yes Yes | Yes Yes | Yes Yes |
| 24/7 IR service request hotline/email | Yes Yes | Yes Yes | Yes Yes |
| Service level agreement (SLA) | Best effort Best effort | Yes Yes | Yes Yes |
| Discounted Mandiant support hours | No No | "Prepaid, with additional hours as needed" "Prepaid, with additional hours as needed" | As needed As needed |
| Proactive Mandiant services | No No | Can apply unused retainer hours toward Mandiant service Can apply unused retainer hours toward Mandiant service | Purchase bundle of proactive service to be delivered during term of the retainer Purchase bundle of proactive service to be delivered during term of the retainer |
| Incident preparedness services | No No | Yes Yes | Yes Yes |