We have a variety of ways to assess your organization's incident response readiness. If you want we can start with a direct attack allowing our team to use all the same methods an active attacker would starting very quietly and then getting louder and louder to see when they notice us breaching your network or pivoting around inside your network and optionally exfiltrating data to encrypted devices.
That said, if your team is still building up its incident response readiness we can walk your team through several in-depth incident scenarios from real-world events to see where their strengths and weaknesses are preparation-wise. This is one of the best ways to determine how well thought out and how mature your incident response process is. These are also a lot of fun. After this we will individually assess each process and look for scoping failures which may have been missed during program development. If needed we can also provide training directly to your staff. This process will definitely leave your team stronger than it was when you started and it has additional side-benefits of helping your organization do a better job of network and system troubleshooting and performance monitoring. We can also train your staff on legal issues and how to take a case to law enforcement and walk through the entire process of report writing, depositions, and testifying. Finally we can also help you formalize your processes and documentation from both a compliance and legal standpoint.
We also provide a wide range of custom services and documentation review in this area. Please let us know if you’re interested in this service.