Service

Cyber Incident Response

Task type
Respond to an incident
Readiness Level
Foundational, Intermediate, Advanced
Related topics:
Cybersecurity Best Practices, Organizations and Cyber Safety

Description

Provides incident response, management and coordination activities for cyber incidents occurring in the critical infrastructure sectors as well as Government entities at the Federal, State, Local, Tribal, and Territorial levels. Provides technical expertise and capacity to its constituents in responding to incidents. Incident response efforts focus on finding the root cause of an incident by searching for tools, techniques, and procedures along with behaviors and associated artifacts in the victim network. There are four types of customer engagements: remote assistance, advisory deployment, remote deployment, and on-site deployment.

For more information on cyber incident response, visit the Incident Detection, Response, and Prevention page. 

CISA Incident Reporting System

This system provides a secure web-enabled means of reporting computer security incidents to CISA. 

Report

Tags

Audience
Educational Institutions, Federal Government, Industry, State, Local, Tribal, and Territorial Government
Topics
Cybersecurity Best Practices, Organizations and Cyber Safety

Related Services

Intermediate

Semgrep

Semgrep OSS is an open-source, static analysis tool for searching code, finding bugs, and enforcing code standards at editor, commit, and CI time.
Foundational

ThreatMapper

ThreatMapper is a platform that understands the risks and build a prioritized list to be used as a guide for remediation.
Foundational

Velocity

Velocity is a cyber risk quantification platform that evaluates both internal cyber maturity and third-party risk.
Intermediate

SOCRadar Labs

SOCRadar Labs have more than 25 free tools to meet the daily needs of SOC analysts and CISOs in detecting existing and possible cyber threats.