Incident Response and Cyber Defense Services

Incident Discovery

The RSA incident response team uses RSA NetWitness^® Packets and RSA NetWitness Endpoint to proactively uncover potentially malicious activity. Deliverables include specific remediation activities for each threat identified.

Incident Response Jumpstart

Optimize your investments in RSA NetWitness Platform by working hand-in-hand with the RSA incident response team to conduct cyber threat detection and analysis.

Incident Response Rapid Deploy

To minimize damage from a breach, count on a partner with experience investigating and responding to the most sophisticated cyber attacks, close ties to law enforcement and battle-tested processes and tools.

Incident Response Retainer

Enjoy rapid access to top-tier security analysts from RSA who will help reduce the dwell time of attackers and mitigate the impact of an incident.

Controlled Attack and Response Exercise

Get a comprehensive assessment of your organization’s capabilities to respond to a real-world attack scenario and recommendations on how to improve them.

Security Operations Program Development

RSA uses a repeatable and sustainable service delivery framework for transforming reactive security programs into a predictive, intelligence-driven advanced SOC.

Strategy & Roadmap for Security Operations

The Strategy and Roadmap service measures current capabilities and maturity levels for dealing with advanced threats. Customers receive a remediation roadmap to reach the targeted state of maturity.