Security Crisis and Incident Response
Security Crisis and Incident Response offering comprises doing a comprehensive review of the three core components of the infrastructure to determine the adequacy of the crisis and incident response techniques defined. The three core components are:
Application Security: Core applications are examined and existing processes are reviewed to formalize administration and crisis response mechanisms.
Network Security: Network infrastructure and configuration management techniques are reviewed for integrity. Incident handling and responding mechanism are defined for the core infrastructure.
User Level Security: Existing policies and recent incidents are reviewed along with current best practices to define an appropriate framework for user level security.
Incident Monitoring and Handling
- Investigation Management: Defining the management model for security investigations
- Emergency Responses: Defining the response during various types of emergencies
- Root Cause Analysis: Identification of the root cause of an incident
Emergency Response Planning
- Response Team Coordination: Defining the coordination mechanism between the team— escalation lists and responsibilities
- Policy and Procedure Development: Development of suitable policies and procedures
- Response Plan Testing: Testing the Response plan for practicality and effectiveness
- Forensic Analysis: Define an outline to conduct forensic analysis
- Evidence Handling: Define a method to handle evidence
- Litigation Support: Preparation of evidence for litigation purposes, such as disciplinary action
The NIIT Technologies Advantage
- 24 X7 Security-monitoring tasks executed at Cyber Intelligence Center
- Continuous operational process enhancement
- Well-defined crisis and incident response policies and procedures
- SLA based tracking