S21sec provides the most throrough and innovative service against security incidents. Our DFIR team, S21sec’s incident response capability, is able to provide in situ support in, at most, 12 hours, backed up by seasoned threat intelligence officers.
S21sec’s SOC-CERT is part of FIRST (Forum of Incident Response and Security Teams) and the TERENA European network. Collaboration and coordination between member organizations enables S21sec to obtain (and provide) the latest alerts for new threats, enabling improved detection and faster resolution.
S21sec’s work is backed by leading vendor technologies and solutions, by our own proprietary tools and by our expert teams that include certified technicians in forensics solutions and other relevant products.
S21sec possesses extensive Incident Response experience having supported customers of varying sizes, natures and industries over more than 15 years.
S21sec technical staff includes certified DFIR professionals, forensic analysts and reversers.
Threat Intelligence officers backing-up in situ incident responders provide them with actionable insights as updated TTP info, actor profiles, malware hashes, amongst others, so response capacity is greatly improved.
S21sec team always includes a member of its ExCom to provide executive-level interface when required and to guarantee the provision of resources and staff as needed.
The execution of a readiness assessment (available in the “retainer” service model) provides contextual information that allows the identification of most-likely incidents and associated play books, as well as specific solutions and configurations to be provisioned that will speed-up response to incidents.