After decades of collaborating with internal and external teams to detect and battle live attackers, and still more years of developing the F-Secure Countercept technology stack and service, we have devised a methodology which merges people, process, and technology that we call Continuous Response. It is this methodology that enables us to battle live, targeted attacks, and can be used by any company, regardless of security maturity.
At the core of the Continuous Response methodology are the three Cs – Collaboration, Context, and Control.
The minute an attack is detected, multiple teams mobilise in both your organization and ours
Collaboration supports seamless teamwork, communication and processes to enable fast decision making, communication and co-operation between experts and decisions-makers, both internal and external.
When an attack hits you need access to the most pertinent data and telemetry from across your estate
People with The Threat Hunting skillset – supported by our proprietary technology stack – is paramount, as it fuels our ability to rapidly collect as much critical information about the incident as possible.
Investigation, containment and remediation actions are guided by Control
Control leverages the data assembled during the Context phase while harnessing the tools of our platform to capture forensic data, actively sweep multiple endpoints for the existence of particular indicators of compromise, and find key artifacts in the compromised machine’s file system, to ultimately contain the incident.
How do you stop an attack while it’s happening? With Continuous Response. A methodology for detection and response that any organization – regardless of security maturity – can follow.
Martin Wilde
Global Head of IT, Pfisterer
Chief Information Security Officer, National Bank
Cyber Security Director, Security Company
Information Security Manager, Legal Firm