In today’s cyber threat environment, we know that the question isn’t whether federal agencies will be attacked, resulting in a major cyber incident; it is a matter of when will it occur. Minimizing the impact of these incidents relies upon mature incident response capabilities so that agencies can quickly respond, contain, eradicate, and recover from the incident when it happens.

KCG brings experience developing incident response programs based upon industry standards and best practices, including National Institute of Standards and Technology (NIST) guidance for incident handing (NIST Special Publication 800-61), malware incident prevention (NIST Special Publication 800-83), and integrating forensic techniques into incident response (NIST Special Publication 800-86). Our approach aligns agency communications, techniques, tools, and training to build incident response programs that effectively limit the damage from cyber attacks.

KCG offers the following services in support of incident response programs:

• Incident Management and Response Plans and Methodologies
• Effective Communication Response Plans
• Incident Case Tracking Procedures
• Incident Investigation Procedures
• Formation of Incident Response Teams
• Formation of an Emergency Response Detail
• Evidence Collection and Handling Processes
• Incident Investigation Methodologies and Training
• Chain of Custody Procedures