Incident Response and Breach Management

Ensure always-on access to dedicated forensic capabilities to ensure rapid response to security breaches.

Cyber security threats aren’t going to decline any time soon, but enterprises realize they are increasingly judged not by whether they are compromised, but how quickly they detect and respond to attacks.

Ensure 24x7x365 access to highly skilled security professionals to investigate breaches.

Getting that process right can minimize brand damage and reduce possible regulatory fines in the wake of a breach, but it is a challenge for many organizations to attract and retain the talent needed for incident response.

DXC Incident Response and Breach Management is designed to ensure that your enterprise has 24x7x365 access to highly skilled security professionals to investigate breaches. It starts with our incident response advisors working closely with your organization to build a collaborative incident plan and jointly define escalation procedures. When a top-tier incident occurs, all required participants are quickly integrated into the response. Benefits of this service include:

Minimized breach impact. Quickly identify the extent of the compromise.
Reduced brand damage. Ensure timely insight into breaches so your organization can accurately communicate the severity of the compromise and reduce the uncertainty and misinformation that typically follows a high-profile breach.
Reduced regulatory fines. By demonstrating optimized response capabilities, enterprises can help minimize potential regulatory fines resulting from breaches.

At the beginning of the engagement, DXC Technology advisors work with you to identify the access needed to swiftly respond to incidents remotely. This initiation can include deploying customized forensic technologies or provisioning access to existing endpoint defense and response tools.

Flexible resources based on usage

Access to DXC’s resources is related to usage. Your organization can purchase a monthly allotment of response hours and draw upon them as needed throughout the month. If the allocation is not fully consumed, the hours can be carried forward throughout the contract year.

After the 10th month of the service year, up to 50 percent of any unused retainer hours can be transferred to other DXC advisory or security diagnostic services, depending on the commercial package you choose.

Additional services

DXC has a variety of capabilities within its portfolio to address breaches, including diagnostics capabilities that essentially X-ray specific problems as a first step to resolving the issue and strengthening security posture. DXC also offers key diagnostic services that can be deployed before incidents happen, including Cyber Attack Simulation, Ransomware Diagnostic, Cyber Maturity Review and Privileged Account Security Diagnostic.

In addition to helping your organization respond to incidents, DXC can also provide a full range of investigative services to help you understand the motives behind the attack.

DXC’s Digital Forensic Investigations practice can help your enterprise proactively identify the threat actors responsible for the breach, their methods and what they’re targeting before delivering remediation recommendations.

These Digital Forensic Investigations services include advanced compromise assessment, digital forensics, e-discovery/disclosure and threat hunting.

Deep security expertise

DXC is the only security consulting company that offers an end-to-end, product-agnostic approach to strategy and risk compliance, including enterprise architecture and workforce, cyber defense, operational and technical security, as well as design, implementation and management of security solutions. DXC offers:

Advisors who can address key industry business risks with in-depth knowledge of your specific security needs and legal, regulatory and compliance issues.
A single source for security advisory services, managed services and third-party technology. DXC advisors can deliver strategic security transformation programs — addressing people, processes and technology changes.
Managed services that ensure 24x7x365 support to protect your business. DXC has 4,000 security advisors and 12 Security Operations Centers (SOCs) worldwide.
Industry-certified professionals with extensive compliance expertise to advise on regulations such as SOX, HIPAA, PCI DSS, ISO 27001, CISSP, SANS, GIAC and partner-specific accreditation.

Take the next step

Take the next step toward reducing response times and minimizing the impact of breaches on your business and your brand. Contact us to learn more about DXC Incident Response and Breach Management.

Incident response case studies

A global energy company was unable to determine the severity of a breach or even if they were still under attack. DXC found and isolated compromised systems, assuring that no valuable data had been exfiltrated. Next they rebuilt laptops and servers and implemented a privileged account review and maintenance plan, giving the customer peace of mind.
A global manufacturer watched as initial minor breaches escalated to a major enterprise-wide compromise resulting in data exfiltration. DXC identified a complex advanced persistent threat attack, excluded the attackers with limited risk of IP loss and damage to business reputation, implementing a cost-effective restoration of proper operation.
A global technology company suspected an employee had obtained unauthorized access to sensitive information in remote systems. DXC helped prevent loss and damage from the theft of sensitive data by providing irrefutable forensic evidence, ensuring the malicious employee was identified and dismissed. DXC further reduced risk to the business by recommending changes to internal access controls.