Hi
We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it?
I hope we never have to use it, but be prepared is better
Thanks Michael
Hi Michael
There are a few, one that comes to mind right now is Compass Security.
Stefan
Am 23.11.2023 um 13:19 schrieb Michael Righter via swinog:
Hi
We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it?
I hope we never have to use it, but be prepared is better
Thanks Michael
swinog mailing list -- swinog@lists.swinog.ch To unsubscribe send an email to swinog-leave@lists.swinog.ch
Hello Michael
It also depends on the size of your infrastructure and wallet. Infoguard comes in to my mind.
Regards, Urs
Von: Michael Righter via swinog swinog@lists.swinog.ch Datum: Donnerstag, 23. November 2023 um 13:20 An: swinog@lists.swinog.ch swinog@lists.swinog.ch Betreff: [swinog] Contacts and Experts for Security Incidents
Hi
We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it?
I hope we never have to use it, but be prepared is better
Thanks Michael
Hi Michael
I think before you choose an external partner you have to figure out what you want and need.
Typically this done by
1. Identify your prime assets 2. Identify the risks 3. Build up a plan for proactive measures: Try to build resilient systems, not "unhackable" ones 4. Create visibility: Most breaches are not discovered by the organization, but by external enteties. 5. Have people ready that can react. A CSIRT (computer Security Incident response team) does not need to be huge. It can even be virtual, i.e. comprised of people that have other regular jobs, but can dedicate time during a crisis. 6. The look for external resources: You need more than a name, you need a relationship. This means talking to people and see if it is a fit. As was mentioned there are several commercial providers in Switzerland, but you need one that shares your vision.
Consider running your own team with a backup plan, and have a look at www.first.org.
Best Serge
On 23.11.23 13:19, Michael Righter via swinog wrote:
Hi
We are creating an emergency handbook if we would have a critical security incident. Is there someone who can suggest a company which can help to find how the guys hacked the infrastructure and how to fix it?
I hope we never have to use it, but be prepared is better
Thanks Michael
swinog mailing list -- swinog@lists.swinog.ch To unsubscribe send an email to swinog-leave@lists.swinog.ch