Get 24/7 incident response assistance from our global team
- APAC: +65 3159 4398
- EU & NA: +31 20 890 55 59
- MEA: +971 4 540 6400
Get 24/7 incident response assistance from our global team
Please review the following rules before submitting your application:
1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.
2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.
Pre-negotiated statement of work provide with synergy of proactive and reactive services related to a security incident. Group-IB designed Incident Response Retainer agreements in different ways to fit various budget and business needs, and to minimize downtime during a cyberattack.
Services for repurposing prepaid hours
Distributed team across the world is created to provide our clients with a tailored and prompt Incident Response
Signed NDA and approved contract allows you to start response engagements immediately without any legal risks or costly delays
Have a trusted team ready to assist as the Group-IB team already in the context of your security status and will provide you with consulting and trainings
Get advantage of the wide range of proactive cybersecurity services even if the incident never happen
Please fill in the form below to get your subscription for Group-IB Incident Response Retainer
Incident Response is a set of procedures and actions to prepare for, detect, stop, and recover from an information security incident.
It is possible to decrypt files after a ransomware attack in rare cases only. Usually, if there are no backups it is impossible to recover the data.
We need a signed 3-way NDA (non-disclosure agreement between you, us and the partner) and issued PO (purchase order) or service engagement letter.
Incident Response service is being priced by hours of the response engagement for each specialist involved.
We expect our clients to perform following actions:
Our Incident Response team leverages an in-house solution – Group-IB Managed XDR, which enables advanced protection, rapid collection of forensic data and containment of compromised hosts, as well as 24/7 monitoring and notification supported by CERT-GIB.
We install EDR agents and for two weeks after responding to the incident, the CERT-GIB team will monitor the infrastructure so your IT team has time to implement our recommendations.
While the incident is going, you will be supported by our account manager. Depending on the type of incident, we will allocate not only incident responder, but digital forensics specialist, malware analyst and a cyber threat intelligence specialist.
On average, there are 2 DFIR specialists allocated for each incident. Depends on a complexity of the incident could be up to 5 specialists.