Incident Response Planning and Analysis Services

A strong Computer Security Incident Response Plan (CSIRP) can minimize the duration and impact of a security breach. David J. Peck and Associates, Inc. security consultants help your organization prepare to respond quickly and effectively.

Available Incident Response Planning and Analysis services include:

  • Computer Security Incident Response Plan (CSIRP) and Program Development
  • CSIRP Gap Analysis
  • Customer Information Disclosure Planning
  • Logging Configuration Review
  • Compliance Integration
  • Incident Response Retainer Services

Don't have an Incident Response (IR) plan? DJPaA will assist you with developing and implementing one. We will help your company integrate an effective security policy, starting with defining IR workflows, roles, and responsibilities, as well as refining your detection and response procedures.  Before that happens, DJPaA will strive for full comprehension of current procedures and guidelines to devise an IR plan tailored to your organization's needs. Afterward, key stakeholders can be educated about the IR plan via interviews and workshops, ensuring no one is left in the dark when crises arise.

DJPaA will create IR Plans incorporating any previously available content that may include the following sections:

  • IR Charter
  • Delineation of Roles, Responsibilities, Dependencies, and Levels of Authority for Incidents
  • Incident Categorization and Severity Definitions
  • Procedural Flows and Escalation Procedures for Incident Handling
    • Event Detection Process
    • Triage and Analysis Process
    • Incident Declaration Process
    • IR and Recovery Process
    • Incident Communication Process
  • Reporting Procedures, Templates, and Forms
  • Response Team, Key Vendor and Law Enforcement Contact Information
  • Internal and External Notification Requirements
  • Employee Awareness and Readiness Training
  • Post-Incident Analysis and Improvement Process
  • IR Metrics

Get a Quote

Testimonials

"David has impressed me with his ability to maintain a high degree of security knowledge in a field that is constantly changing."
-Timothy M. Opsitnick
" In particular, he provided the core capability we needed to execute a recent cybersecurity assessment for the U.S. Department of Energy (DOE)."
-Ranson J. Ricks
Indianapolis, Indiana
"His record of corporate successes in a highly competitive cybersecurity environment speaks for itself."
-Carlos Fernandes
Purcellville, Virginia