Incident
Preparedness

Ensure your company & people are prepared to handle incidents

Incident
Management

Cybersecurity & management expertise to recover from incidents

Incident
Response Tools

Cloud based tools for team coordination, communication & collaboration

Business Continuity & Disaster Recovery

Business Continuity Planning and Disaster Recovery (BCP/DR)

Preparedness: Empower Your Team for Success

Be proactive.

The middle of an incident is not when you want your people figuring out what to do and how to do it. Having established processes and tools to help people work together and capture information to communicate effectively is key to reducing recovery time and minimizing the effort and cost of dealing with incidents.

Make sure your team is ready to effectively deal with and recover from incidents.

Current State
Assessment

Understand your current risk posture and where you have exposure—across systems, third parties, and operations.

Improvement
Roadmap

A prioritized listing of steps for improvements across technical, business, and compliance areas.

The Current State
Assessment

Our methodology focuses on getting the information we need to provide insight with minimal disruption to your team.

Improvement Roadmap

We use the assessment findings to develop a Roadmap of items for consideration. Our methodology includes prioritization of these items and a forecast of the effort to complete them.

Some items will be critical items to address as soon as possible. Others can be combined with other efforts over time. Roadmap items will also provide considerations that may be addressed as the organization grows and expands.

NCG cybersecurity and integration experts can help your organization implement Roadmap items aligned with business investment decisions and timing that makes sense for the organization.

Management: Plan Your Incident Response

Incident Management

Frameworks to address incidents when they happen with consistency and facilitate effective coordination and collaboration between internal and external parties.

Events that impact your operations can range from simple errors, to malicious attacks, or natural disasters.

These events test your people.

Stress levels rise, some day-to-day processes may no longer be applicable, and the needs for command and control are never greater.

NCG helps your team manage through incidents with proven methodologies and cybersecurity expertise. We help prepare you for major events such as platform migrations, new deployments, and data conversions where incidents are to be expected.

Incident Support


Effective incident support coordinates your incident management response, memorializes incident details and evidence chains, and organizes your information for lessons learned and continuous improvement.

Data breaches and other system incidents require a number of different groups to work together.

The ability to engage the right people, effectively direct activities, and coordinate actions are important for all organizations. Efforts need to be measured and evaluated to identify future improvements and ensure personnel have the right training and skills to be effective.
Defined Roles and Responsibilities

Well defined roles and responsibilities manage expectations on all sides and clarify what people should be doing and what their accountability is in a given scenario.

Defined Escalation Processes

Establish a standard process for escalation that is recognized and understood across the organization.

Defined Communications Procedures

Establish a framework and controls to ensure proper communication and avoid mismanagement of information.

Managed Process to Restore Normalcy

Establish processes to support a graceful return to normal operations and minimize any additional service disruption in that process.

Connecting Technical, Business,
and Compliance Needs


Response and recovery actions will have technical system level actions that will need to be supported by communications and reporting functions that are able to engage parties from law enforcement, regulators, shareholders, key partners, media, and the general public. Information that covers technical and business level details will need to be organized and managed to meet the needs of all those parties.

Bridging Between Different
Areas of the Organization


Organizations must address differences in how people across different parts of the organization communicate and work. This helps avoid gaps between groups such as IT, management, lines of business, and third parties.

Data Management Frameworks


Define expectations to collect the necessary amount of data and other memorialization efforts to support coordination with law enforcement, compliance investigations, and legal teams.

As an organization grows in size and complexity, incident management functions need to evolve as well.

Framework to Continuously Improve

A framework to identify, plan, and implement improvements across the incident management program and IT component functions.

Validate and Measure Effectiveness

A formal process with defined measures and metrics to evaluate the effectiveness of actions providing data to support future improvements.

Tools: Organize Your Incident Reporting

NCG Orchestration Incident Management Portal:
Tools for Coordination, Communication, and Collaboration

FULL INCIDENT REPORTING


Robust Processes and Data Collections for Significant Incidents


  • All simple incident functions, plus PII impacts
  • Distributed notification
  • Reporting frequency management
  • Impact assessment
  • Custom tasks management
  • Team management
  • Recovery action management
  • Contingency plan management

SIMPLE INCIDENT REPORTING


Basic Functions for Most Incidents


  • Severity
  • Ownership
  • Context
  • Incident Details
  • Time to Resolve

AUTOMATION FUNCTIONS


  • Demonstrate consistency and completeness in dealing with incidents.
  • Provide scalability of efforts and documentation based on the type of incident encountered.
  • Create processes to deal with system issues ranging from typical outages to possible data breach scenarios.
  • Use tools and templates to follow best practices in working through different types of incidents.
  • Define Teams and Support groups, including external parties, and engage them securely.
  • Streamline and standardize communications and reporting from identification to resolution of incidents.
  • Leverage communication distribution lists to get the right information to the right people at the right time.
  • Manage and archive information updates and status checkpoints.
  • Create timelines of events and supporting data collection to work with legal, regulatory, law enforcement, and other key third parties.
  • Reference past incidents and lessons learned to improve processes and capabilities for the future.

BCP/DR: Coordinate Essential Business Capabilities

Business Continuity Planning / Disaster Recovery

Incident management, business continuity planning, and disaster recovery are all essential business capabilities. They each have their own functions, but may be needed together in some events.

Business Continuity processes come into play when critical business functions are interrupted and alternatives are needed to operate and service customers.
Disaster Recovery processes are implemented when infrastructure is no longer available and contingency resources are leveraged.

NCG helps organizations build effective frameworks to design, plan, test, and execute Business Continuity Planning (BCP) and Disaster Recovery (DR) capabilities.

The companies that survive major outages and disasters are the ones that have been proactive in developing policies, plans, and capabilities to get through such events.

These organizations have spent time and resources to make sure they have the infrastructure and controls to mitigate adverse impacts, and have practiced using that capability at all levels of the organization. This combination of preparation and practice gives the organization what it needs to function during a crisis and after.
  • Design & Build

    Starting with business impact assessments, craft the frameworks and processes to keep operations running under a range of circumstances.

  • Maintain Currency

    Conduct table-top and simulation exercises to test your plans and build readiness in your teams.

  • Test & Exercise

    Review and update plans and exercises to reflect current operations and factors.

  • Activate

    Implement BCP/DR plans with supporting coordination, communication, and collaboration using secure cloud based tools.

Submit a RFP or Request Contact

Back to Top