Ransomware Resilience Assessment
Gain a better understanding of your ransomware readiness and ability to mitigate potential ransomware attacks.
We review your ransomware incident response plan and conduct interviews to build an understanding of your process. We then perform a technical review of prevent, detect, respond and restore capabilities.
We will assess technical settings across Active Directory, endpoint, EDR, SIEM and network architecture to further understand controls and planned roadmap activities. We will meet with stakeholders including Application, Infrastructure, Backup, Network, and Security for deep dive workshops and to discuss our findings and recommendations. The assessment will cover the following areas:
EMAIL SECURITY
ENDPOINT HARDENING & EDR CONFIGURATION
DOMAIN SECURITY
CYBER INSURANCE
FILE SHARE PROTECTION
SIEM DETECTION
PRIVILEGE ACCESS MGMT CONFIGURATION
BACKUP & RESTORE
Ransomware Engagement Process
PLANNING
- Request and review documentation
- Schedule workshops
- Display configuration assessment tools (metapod and Ping Castle)
ANALYSIS
- Conduct workshops
- Review technical assessment output, conduct follow-ups
- Develop dashboards and identify potential risks
- Discuss initial findings and build consensus
REPORTING
- Document roadmap recommendations with resource requirements
- Conduct workshops to walk through the detailed findings, incorporate feedback
- Finalize report
Get Started!
Let us know if you would like us to provide ransomware resilience services for you by completing the contact form.