Hi Michael
I think before you choose an external partner you have to figure out what you want and need.
Typically this done by
1. Identify your prime assets 2. Identify the risks 3. Build up a plan for proactive measures: Try to build resilient systems, not "unhackable" ones 4. Create visibility: Most breaches are not discovered by the organization, but by external enteties. 5. Have people ready that can react. A CSIRT (computer Security Incident response team) does not need to be huge. It can even be virtual, i.e. comprised of people that have other regular jobs, but can dedicate time during a crisis. 6. The look for external resources: You need more than a name, you need a relationship. This means talking to people and see if it is a fit. As was mentioned there are several commercial providers in Switzerland, but you need one that shares your vision.
Consider running your own team with a backup plan, and have a look at www.first.org.
Best Serge
On 23.11.23 13:19, Michael Righter via swinog wrote:
Hi
We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it?
I hope we never have to use it, but be prepared is better
Thanks Michael
swinog mailing list -- swinog@lists.swinog.ch To unsubscribe send an email to swinog-leave@lists.swinog.ch