Incident Response Planning
Facing a security incident can be crippling, and if the IT team is not well-prepared, the incident usually results in chaos, panic, and a very slow recovery. MicroTech solves this problem by providing you with Incident Response Planning service. We develop an Incident Response plan tailored for your organization. The plan covers the major types of incidents and the procedure to effectively handle it and swiftly recover from it.
In order to reach that goal, we go with you through these phases:
- Prepare: we analyze your current state in terms of technology and people.
- Team: we build your qualified incident response team.
- Outline: we detail all forms of incident.
- Recovery: we detail all procedures of recovery.
- Drill: we train the team using practice tests.
- Communicate: we make sure the plan is communicated across your environment.
Forensics Investigation
Forensics is the practical science of uncovering the evidence of the attack and the attacker. When a cyber incident hits your organization and you managed to recover from it, forensics investigation is necessary here to uncover exactly what have happened, analyze the root cause of the incident, and provide any evidence of who the attack is.
Our forensics experts will investigate the causes and sources of the incidents using sophisticated and well-known forensics tools, such as:
- The Slueth Kit
- CAINE
- Registry Recon
- Volatility
- SANS SIFT
- FTK Imager
- Xplico
- LastActivityView
- FireEye RedLine
- USB Historian
- Linux ‘dd’
- ExifTool
- HEX Editor
- Bulk Extractor