CYBERCX UK LTD

Digital Forensics & Incident Response (DFIR) Retainer

24x7x365 access to our global Digital Forensics & Incident Response (DFIR) team with a DFIR Retainer. We provide unmatched industry knowledge, understanding of your local threat landscape and deep expertise across all stages of the breach response lifecycle. The service will integrate and enhance your existing IR processes and capabilities.

Features

• Response 24x7x365 with uncapped triage.
• Agreed SLA.
• Onboarding session to obtain information for an efficient engagement.
• Regular updates from our Cyber Intelligence Team.
• Discount on investigation and response fees.
• Access to our global crisis communications team.
• Incident coordination for larger and more complex incidents.

Benefits

• Immediate response and guidance from leading incident response experts.
• Extensive experience with enterprise-wide incident response and recovery.
• A partner that understands your network.
• Minimises adverse impacts by acting fast to identify the cause.
• Cost-effective and scalable.

£7,000 to £50,000 a unit

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at philip.mason@cybercx.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

666028734174427

Contact

Philip.mason@cybercx.com
07990553832
philip.mason@cybercx.com

Planning

• Planning service: No

Training

• Training service provided: No

Setup and migration

• Setup or migration service available: No

Quality assurance and performance testing

• Quality assurance and performance testing service: No

Security testing

• Security services: Yes
• Security services type:
  • Security strategy
  • Security risk management
  • Security design
  • Cyber security consultancy
  • Security testing
  • Security incident management
  • Security audit services
• Certified security testers: Yes
• Security testing certifications:
  • CREST
  • Cyber Scheme
  • Other
• Other security testing certifications:
  • GIAC Penetration Tester
  • NCSC - Cyber Incident Response (CIR)
  • SANS: Enterprise Incident Response
  • SANS: Advanced Digital Forensics and Incident Response – GCFA
  • SANS: Enterprise Cloud Forensics and Incident Response

Ongoing support

• Ongoing support service: No

Service scope

• Service constraints: The majority of our work is done remote first, as this is the most efficient and effective approach for most cases. We can also deploy staff to client locations when required. ; ; The only limitation would be:; ; • Staff with government security clearances (from any country in which we operate) may not be permitted to travel to some locations, such as Russia or China. ; ; • In situations that pose other risks to our staff, including personal safety and foreign intelligence risks, we would engage with local authorities or security services to obtain suitable levels of protection.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 24 Hours, 7 Days a Week
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Support levels: 24 Hours, 7 Days a Week.; ; On every engagement, the Engagement Lead is always a senior team member with experience in handling large incidents and communicating to technical audiences and non-technical executives alike. On large engagements, we have incident coordinators and executive support to ensure smooth and efficient flow of information and work streams.; ; The DFIR practice also employs full-time Customer Success Managers (CSMs) who focus exclusively on looking after DFIR client relationships, in particular our retainer clients. Our CSMs engage with clients at key points in their ‘customer journey’ including onboarding workshops, quarterly business reviews and otherwise as needed by each client. They act as trusted Consultants for customers to ensure they are getting the most out of CyberCX’s services.

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 24/03/2023
• What the ISO/IEC 27001 doesn’t cover: None - all requirements of the ISO27001 Certification covers our UK sites, services and personnel.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • ISO9001
  • CREST SOC
  • NCSC - Cyber Incident Response (CIR)
  • ISO22301
  • SANS: Enterprise Incident Response
  • SANS: Enterprise Cloud Forensics and Incident Response
  • ISACA Certified Information Security Manager (CISM)
  • CREST Penetration Testing

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  CyberCX promotes a sustainable future for business, society, and the environment. CyberCX recognises the impact that Environmental, Social, and Governance (ESG) matters may have on the performance of its business. CyberCX’s goal is to embed social and environmental considerations into the heart of our business in ways that create value for our company and stakeholders. As well as our own ambition to reduce our carbon footprint, working with our customers and suppliers we aim to contribute to reduce global greenhouse gas emissions through continuing to develop remote solutions for our customers. CyberCX shall use commercially reasonable efforts to identify and consider material ESG issues in its operating model and its business activities. By taking a responsible and sustainable approach to how it carries on business, CyberCX believes it can better align the objectives of CyberCX, its customers and stakeholders with the broader objectives of society. CyberCX believes fighting climate change benefits ourselves operationally, as well as our employees, shareholders and the wider community.

  Equal opportunity

  CyberCX is an equal opportunity employer and, as part of the Equality Act 2010, treats everyone equally irrespective of; sex, sexual orientation, gender reassignment, marital or civil partnership status, pregnancy or maternity, age, disability, ethnicity, race, nationality, national origin, religion or belief. To support this, CyberCX has deployed a range of policies and initiatives aimed at demonstrating and ensuring our commitment to equal opportunity and a workplace free from discrimination, bullying or harassment. We want to create an environment where all colleagues feel psychologically, emotionally, and physically safe to be authentic, representative of the world they live in, share their personal experiences and have equal opportunity to achieve. As part of our diversity and equal opportunity policies and processes, CyberCX does not require team members to report on their ethnicity or culture. CyberCX is for EVERYONE is a program that covers LGBTIQ+, Women in Cyber, Multiculturalism, Neurodiversity, Reconciliation, and Defence Community. ​​​​​​​In addition, our Women in Cyber Program that aims to lift the diversity of the cyber security industry by encouraging higher participation rates for women. CyberCX is committed to growing the number of Women in the cyber security industry by:​​​​​• Promoting the uptake of women entering, continuing, and leading in Australia’s security industry. • Supporting women on their career journey, and inspiring women to pursue a career in security. • Helping build the Australian pipeline of talented security professionals. • Since 2020, CyberCX has been a platinum partner of the Australian Woman in Security Network (AWSN), an industry professional membership body and advocacy group which promotes women in cyber security. • CyberCX is also a major sponsor of both the Australian Women in Security Awards and the New Zealand Women in Security Awards.

  Wellbeing

  Cyber has a responsibility to our employees and the communities we work within to lead in advancing the mental and physical wellbeing agenda. CyberCX aim to create and promote a culture based on trust, support and mutual respect within the workplace, where employees are able to talk openly about their job and mental health problems and to report difficulties without fear of discrimination or reprisal. ; CyberCX offers all employees a selection of benefits to help improve Health & Wellbeing such as: ; ; • Employee Assistance Program; • Health Insurance & Discounts ; • Annual Flu Vaccinations; • Mental Wellness Leave; • Seasonal initiatives such as Virgin Pulse GO; • Apps including Mindfulness; • Virtual Gym Classes.; ; CyberCX proudly support individual needs where practical and ensure we adapt to emergency domestic situations with compassion and pragmatism.

Pricing

• Price: £7,000 to £50,000 a unit
• Discount for educational organisations: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at philip.mason@cybercx.com. Tell them what format you need. It will help if you say what assistive technology you use.