DPS has extensive experience in providing a complete Incident Response capability. DPS staff has been involved with Incident Response teams and handling incidents through resolution, ensuring that proper coordination and communication is performed. Incident handling and analysis is provided by DPS employees and is also extended to performing DMA/computer forensics and Advanced Analytics handling, as well as the handling and sanitization of data spillage incidents. This capability includes providing 24x7x365 support for all SOC responsibilities encompassing the handling of investigations and incidents from beginning to end.
- Detection and Analysis
- Containment, Eradication, and Recovery
- Post-Incident Activity
Depending on the type of incident and based on the needs of the customer, our analysts categorize and escalate incidents to full resolution. Based on the team’s experience performing work in other SOCs, the team recognizes the criticality of tracking all tasks and facts associated with an incident is crucial to proper recording, auditing, and lessons learned analysis. DPS ensures that all incident tickets include all relevant details and are worked to completion. We also provide a focus on post-incident activity, such as After Action Reporting to improve the handling of future incidents and work to improve the overall security posture of the network.