d3-services.com

Rapid Response
Our Rapid Response capability takes common Incident Response and Handling to the next level by providing complete end-to-end analysis.  We accomplish through our internally developed holistic methodology designed to begin with performing live media and memory analysis of a compromised system.  This will lead us to perform appropriate digital media imaging and analysis.  From this information we will net data that will need to be analyzed (such as malicious code) as well as logs that will be matched with network logs and security data.  This allows us to perform these pertinent and comprehensive services, immediately and while on-site.

  • Live Media Analysis
  • Digital Media Analysis
  • Network Intrusion Analysis
  • Malicious Code Analysis

In order to support our customer’s need to provide immediate and complete incident response services, we have developed the Rapid Response capability.  This team is staffed by professional incident response and computer forensics analysts, prepared to conduct live media, digital media and malicious code analysis.
The following response times are the guideline that we will commit to, based on agreed to Statement of Work.

      1. National Capital Region (NCR)
        • Consultant will be on-site within 2 hours of response notification.
        • All equipment will be hand carried by the consultant to the customer facility.  A complete hardware and software inventory list can be forwarded in advance to minimize any delays with facilities security.
      2. Continental United States (CONUS)
        • Consultant will be at a major US airport within 2 hours of notification, prepared to be on next available flight to response site.
        • All equipment will be hand carried by the consultant to the customer facility.  A complete hardware and software inventory list can be forwarded in advance to minimize any delays with facilities security.
      3. Outside the Continental United States (OCONUS)
        • Consultant will be at an international airport or pre-determined location within 2 hours of notification, to be on next available flight to response site.
        • During hours of no flight times, the consultant will be available for briefings and coordination at a local facility or airport.

The team will be held on a stand-by status, fully prepared with a complete flyaway kit, for immediate deployment to CONUS or OCONUS locations.

Each of our Rapid Response consultants is prepared 24 hours a day to deploy to a customer incident with the following equipment:

  1. Two (2) ultra high-end laptop systems, loaded with commercial and open-source Incident Response, Computer Forensics and Malicious Code Analysis software in order to conduct complete on-site analysis.
  2. Two (2) external 1TB hard drives for media collection as well as an external Blu-ray disc burner with twenty (20) 50GB Blu-ray disks to maximize data collection
  3. One (1) Logicube high capacity data collection system, capable of data collection speed up to 4 GB per minute.
  4. One (1) complete Computer Forensics hardware kit that includes all necessary SATA, IDE, SCSI and USB read/write devices, cables and power supplies. 
  5. One (1) portable external printer in order to print documents and reports.
  6. One (1) digital camera and photography equipment to document evidence.
  7. Personal items in order to support a 5-day trip.
 
You are here  :Home arrow Services arrow Rapid Response