• PILNE | EMERGENCY | NOTFALL +48 22 213 93 13
  • LinkedIn

Response to cyber security incidents (IR)

A service built on responsiveness and competence. Not lines and playbooks.

SOC360 detects, analyzes and responds to cyber security incidents in dozens of organizations around the world every day. We monitor a total of more than 150,000 computers
and servers, user activity, LANs
and cloud services.  
The SOC360 team has the competencies, experience, processes and tools necessary to provide a wide range of cyber security incident response support services. 

All our experts have the following credentials:

  • Experience and practical skills gained as a result of supporting organizations affected by cyber-attacks, including ransomware attacks.
  • Competence confirmed by the following certificates:
    • Digital Forensics Examiner
    • Professional Network Penetration Tester
    • Certified Red Team Professional.
    • Certified Azure Red Team Professional.
    • Other.

We use professional, commercial DFIR (Digital Forensics and Incident Response) tools and best practices in our operations.

Meet

Scope of Incident Response Service

Constant readiness to respond 24/7

Team ready 24/7 to respond immediately to cyber security incidents.

Remote or local response to incidents

We conduct operations both remotely and at the scene of the incident to ensure a quick and effective response.

Acquisition and analysis of data from systems and applications

We secure and analyze logs using data processing tools to identify attack vectors and effects.


Detailed analysis of digital traces of the incident

We analyze the operating memory and disks of the systems to identify digital traces of the incident and determine the full course of events.


Securing evidence

We use specialized tools, such as write-blockers and disk cloning devices, to protect digital evidence.

Malware analysis and OSINT intelligence

We perform reverse analysis of malicious code and use CTI and OSINT intelligence to understand the source and nature of threats.


Full documentation of activities
and post burglary reports

We document every step of the incident response and prepare a detailed post-intrusion report for better analysis and future-proofing.

Support in dealing with
with law enforcement agencies
and CERT teams

We provide assistance with law enforcement and CERT teams, attend meetings and prepare evidence.

Coordination of response activities
to incidents

We lead and coordinate technical activities, supporting the customer in restoring and recovering systems to normal operation.

Time to

Contact

SOC360 Sp.
z o.o.
Al.
Jerozolimskie 146C
02-305 Warsaw
NIP 5272645676 | KRS 0000374521
REGON 142747022
  • +48 22 213 93 13
  • Hotline 09:00 - 17:00
  • kontakt@soc360.io

Ta strona korzysta z Cookies dla zapewnienia najwyższej jakości obsługi.

Akceptuję