cybersecurity related images

IR Planning & Testing Strategies Consultation

When a bad day comes, be prepared with our incident response planning and testing services

In today's rapidly evolving threat landscape, it is more important than ever for federal organizations to have robust system security incident response (IR) plans in place. The Enterprise Services Center's (ESC) system security IR planning and testing services are designed to help federal organizations prepare for and respond to security incidents in accordance with the National Institute of Standards and Technology (NIST) SP 800-37 and SP 800-53 guidelines. These services include the delivery of a comprehensive incident response plan (IRP) that outlines the detailed procedures for reporting and responding to incidents, as well as escalation procedures and roles and responsibilities for incident response team members. In addition to creating the IRP, ESC also delivers a guided incident response exercise and after-action report. These exercises are designed to test the effectiveness of the IRP and ensure that incident response team members are fully prepared to respond to a security incident in a real-world scenario. Provided with an exercise is an after-action report that includes an analysis of the exercise, including areas of strength and weakness, and provides recommendations for improving the IRP and the system team's overall response readiness. Deliverables include:

  • Incident Response Plan (IRP)
  • Incident Response Exercise Plan and After-Action Report

Eligibility

Federal civilian agencies are eligible to use these cybersecurity services from the DOT Enterprise Services Center (ESC). Department of Defense (DOD) organizations may be eligible for ESC cybersecurity services if their systems are unclassified.

Interested in this Fed-to-Fed service? Get a quote!

To get started, reach out to the ESC team. We will send you a simple questionnaire to fill out. Return the completed questionnaire to us and we will promptly develop a firm fixed-price quote, to include proposed schedules. If you just need a rough order of magnitude (ROM) estimate for budget planning purposes, just let us know.

Contact ESC at CyberServices@esc.gov to get more information and assistance.