Nowadays, it is common ground to assume that there is no installation - and the data that it keeps- that is exempt from suffering some kind of security incident.

Even more: the higher the security levels are, the higher will be the levels of reaction to carry out an effective Incident Management.

In this context, the Incident Management Area in CYBSEC S.A offers a wide reliable range of alternatives that allow to give an organized and immediate reaction to any security incident.

This is translated in stopping the effects of the incident (sterilize it), minimize its consequences and reestablish the normal functioning process of the systems, in the least amount of time.

1. Reaction in view of an Incident.

The service aims at detecting potential security incidents at an early stage, in order to minimize their effects on the systems and the data.

Our methodology includes the development and implementation of a reaction procedure in view of a Security Incident, which details the sequence of actions to carry out in this kind of situations, as well as the steps to follow afterwards to avoid the repetition of the same events in the future.

The permanent hiring of this service means that apart from important installations, your company will also have CYBSEC S.A. experts collaborating with the company's experts in the effective response to the incident.

This procedure has proven to be highly effective in annulling and/or minimizing the effects of an incident on your system and on your data.

2. 7x24 Hours Support.

This service offers the possibility of having at your disposal the support of a highly specialized team of CYBSEC S.A. experts ready to start operating immediately and effectively after the information security incident has taken place.

The procedure has proven to be highly effective in annulling and/or minimizing the effects of an incident on your system and on your data.

3. Intrusion Detection and Tracking.

Once an information security incident has taken place, it is normal that you wish to know precisely how it was produced and, if possible, the origin of the incident. With this service, CYBSEC S.A. tracks down the intrusions, using all the data that remains in the affected systems.

The methodology that we apply includes the analysis of the information gathered and, based on that, we proceed to carry out a back trace of the origin of the intrusion, and with the results of this process, we determine the origin of the incident.

With the information that we obtain from this process, we can also identify the methodology that the intruder used to penetrate the systems and, consequently, we can also propose and develop corrective solutions.

4. Anomalies Investigation.

Medium and high complexity anomalies that are produced in some systems can be analyzed and given solutions with this service that CYBSEC S.A. offers, that has proven investigation skills and more than enough experience in this specialty.

5. Forensic Computer Analysis.

Nowadays, if an information security incident takes place, it is necessary to generate the technical documentation to support the legal actions and substantiate the incident to your insurance company. For this situations, CYBSEC S.A. has an experts team highly specialized in detecting the evidence and producing the facts to support your claim

This service consists in an exhaustive analysis of the information held in the different systems and devices of your computer installation that may be linked to the incident (Routers, Firewalls, Intrusion Detection Systems, Operative Systems, Applications, Files, etc).

Applications, Files, etc). We use systems specially developed to carry out the detection of non-authorized activities, as well as the identification of techniques and procedures used by the intruder and/or attacker.

The Forensic Computer Analysis is carried out using internationally recognized techniques and technologies of Forensic Computer Analysis Science. In this way, we protect and preserve the computer evidence, which will serve later to carry out successfully the legal and administrative procedures.