Response Readiness Assessment

Mandiant Consulting

Assess your team’s ability to detect, respond to and contain advanced cyber attacks

The Mandiant Response Readiness Assessment evaluates an organization’s incident response (IR) function which includes their Security Operations Center (SOC) and IR capabilities. It compares the IR function against leading practices to determine what capabilities are needed and how best to implement them.

incident-response

Overview

Using a combination of team discussions, internal document review and tabletop exercises, Mandiant consultants conduct a comprehensive survey of your existing cyber security event monitoring, threat intelligence and incident response capabilities to deliver a detailed roadmap and specific, cost effective improvement recommendations. During the assessment, our consultants examine six key areas of your program to ensure best practice incident response readiness:

Governance

Serves as a foundation for an effective IR function that advances the organization's greater strategic objectives.

Threat Intelligence

Uses attacker intelligence to reduce internal and external threat risks and create effective threat response strategies.

Visibility

Represents the people, processes, and technology that detect threats across the organization's business architecture.

Response

Represents identification of the incident type, impact assessment and determination of proper IR actions to be taken.

Communications

Represents the processes that allow communication of IR information to important internal and external stakeholders.

Metrics

Signifies the measurement and development strategies needed to maintain and improve the IR function.

What you get

  • Independent Assessment
  • Best Practices Overview
  • Tabletop Exercise
  • Prioritized Recommendations
Six Core Capabilities Model

Six Core Capabilities Model

TESTIMONIAL

“The best-case scenario when experiencing a disruptive attack is that you are well prepared and able to minimize the damage.”

- M-Trends

M-Trends 2017: Trends behind today’s breaches and cyber attacks

Explore the trends that define today’s threat landscape based on Mandiant’s investigation of the year’s successful breaches and cyber attacks.

Download report

The Executive’s Breach Response Preparedness Playbook

Dramatically enhance your organization’s breach response preparedness

Access the playbook

Are You Ready to Respond?

Incident response experts draw on their experience to help you improve your ability to respond. Download to learn how to evolve your response plan as your needs change.

Download now

Our Process

Step 1

Assess your ability to detect, respond and contain threats

Mandiant consultants review your SOC and IR documentation and compare your current processes against industry best practices to establish your baseline performance. They also conduct detailed staff interviews to better understand SOC and IR processes that are unique to your organization.

Step 2

Test your processes with tabletop exercises

Incident scenarios (i.e., system compromise, unauthorized access of personally identifiable information(PII), policy violations, inappropriate emails) are simulated to evaluate your organization's response processes from incident detection to closure.

Step 3

Adopt recommendations and custom roadmap

The observation identified during documentation review, staff interviews, and the tabletop exercise will be used to develop the final report and presentation. Your organization will be benchmarked against legal and regulatory requirements, and industry best practices. The RRA will highlight your organization's SOC and IR strength's, and identify improvement opportunities.

Ready to get started?

Our security experts are standing by to help you with an incident or answer questions about consulting services.

+1 888-227-2721 +61 281034308 +1 866-962-6342 +971 45501444 +358 942451151 +33 170612726 +49 35185034500 +852 3975-1882 +91 80 6671 1241 +353 (0)216019160 +39 0294750535 +81 345888169 +03 77248276 +52 5585268207 +64 32880234 +48 223072296 +7 4954658084 +65 31585101 +27 105008408 +82 7076860238 +34 932203202 +94 788155851 +886 2-5551-1268 +27873392 +44 2036087538 +842444581914