About UsCyber-ThreatComplianceEnterpriseConsultingGSA ScheduleCareersContact

The ever-increasing world of cyber threats and the exploitation mechanisms utilized to deliver these threats continues to evolve on a daily basis. These threats are becoming more targeted and impactful while continually adapting to evade the detection and prevention mechanisms in place to control the attack. Combined with the increase in number and types of technologies utilized in an enterprise infrastructure, this creates an environment where multiple front-doors exist for attackers to target and distribute their malicious payload. Likewise, an increased organizational awareness of implementing and enforcing security policies and practices has driven the need for a formalized approach for efficiently responding to and reporting on cyber incidents.

KCG’s Incident Response and Remediation services are focused around developing an effective strategy for detecting, responding remediating, and reporting cyber incidents. KCG’s incident response professionals are experts in proper incident handling and remediation activities. KCG’s operationally proven service offerings in this area include:
  • Development of Computer Security Incident Response Teams (CSIRT)
  • Developing processes for properly categorizing security incidents and defining reporting requirements for each category of incident
  • Performing all activities related to incident detection, response, remediation, and reporting
  • Identifying standard processes for handling of various security incidents
  • Evaluating current incident response processes and comparing against industry best practices
  • Proactively monitoring the cyber threat landscape and reviewing current exploitation activities against the enterprise inventory of systems to understand current threat levels
  • Development of daily threat briefings and reports on the current threat landscape
  • Translating compliance with proper federal reporting requirements for critical security incidents