Our incident response services have two key objectives. Firstly our services are designed to minimise damage to a client's operations, finances and reputation in the event of a major security incident. Alongside this, we can provide forensic investigation services designed to help our clients ensure that evidence and data which may point to the cause or perpetrators of an attack is preserved, gathered in compliance with the ACPO (Association of Chief Police Officers) approved guidelines on data collection, breach of which could render technical evidence inadmissible. This evidence is then available to be drawn upon by the client if a decision is made to pursue legal action. We have experience of being called upon as expert witnesses in electronic fraud court cases, and we also work with associate consultants who have close links with law enforcement agencies.

We help clients develop emergency management procedures, to help keep the organisation functioning as effectively as is possible as the damage is assessed and repaired. It is also important that pertinent information should be made available to staff handling any media enquiries - to prove that the organisation is already beginning to repair any immediate damage, and is actively working to minimise any other longer-term negative impact.