The qualified incident response package covers actions ranging from information on threats, early warning about such, to assistance in the case of data communication security breach
NASK offers a qualified incident response service package guaranteeing companies and organizations early warning services against threats, as well as professional help in diagnosing and neutralising the effects of incidents of teleinformation security breaches.
The qualified incident response service package consists of the following elements:
- warning against network attacks,
- incident response:
- receiving and identifying incidents,
- locating the source of the attack,
- help in coping with the effects of attack and security breach incidents,
- assistance in the case of DOS attacks (especially effective for those clients, for whom NASK is the Internet service provider),
- periodic reports and consultations,
- threat detection system reports
Thanks to the qualified incident response, a company receives the support of the highest standard among the services available on the market that deal with reacting to incidents of teleinformation security breaches.
The unique qualified incident response service package is made possible with the use of the skill set and knowledgebase of the CERT Poland team.
In order to provide the qualified incident response services we utilize specialized dedicated analytical tools – such as the ARAKIS system, among others. ARAKIS is an ideal complement to Intrusion Detection Systems relying on the database of signatures of threats already described. Usually, IDS systems are unable to generate full descriptions of the event which they uncovered or even to decide, whether the uncovered anomaly indeed constitutes an attack. The ARAKIS system has a much more expanded functionality: its purpose is the detection and description of new threats appearing in Poland and around the world.
For the convenience of the users, the information coming from ARAKIS is presented on a dedicated web page in the form of tables, diagrams and maps. Presentations are generated once an hour thanks to which they portray the most current situation. Additionally, once in a quarter (at the client’s request) we prepare comprehensive threat reports based on the data gathered by the ARAKIS system.
|
