A top global professional services firm saw the rising risks of ransomware and scrutinized incident response capabilities. They realized some of their acquisition targets had elevated risks in their security postures. QOMPLX designed and implemented a digital forensics and incident response (DFIR) program to find and fix gaps in the client’s security program and support its aggressive, acquisition-based growth strategy.
Learn more about how intelligent due diligence and DFIR can help protect businesses that have rapidly expansion strategies.
These are unprecedented and perilous times for companies. In 2021, ransomware demands reached tens of millions of dollars, and those figures won’t abate anytime soon.
As global specialty insurer Hiscox reported in its 2021 Cyber Readiness Report: 43% of companies suffered a cyberattack in 2020 — up 38% in the 12 months before — and one in six of those attacks was ransomware.
So when one of the world’s top professional services firms saw the rising risks of ransomware and looked at their incident response capabilities, they knew they couldn’t afford inaction.
The need was particularly acute because the security postures of the firm’s acquisition targets varied, as some carried elevated risks.
QOMPLX designed and implemented a four-part digital forensics and incident response program to find and fix gaps in the firm’s security stack and support the firm’s acquisition-based growth strategy.
- Scan targets, assess internal and external risks, instrument and enumerate gaps in the client’s environment
- Profile and prioritize critical risks, frame decisions for management, and implement a process for finding and fixing security issues
- Use Privilege Assurance to identify over-permissioned accounts, minimize access and trust
- Use Identity Assurance to protect authentication and detect likely attacks on the firm’s domain controllers and member servers, on the assets of acquired companies
Since first launching the comprehensive digital forensics and incident response program for its client, QOMPLX has continuously monitored its client’s security posture and the client’s acquisitions.
With the QOMPLX Digital Forensics and Incident Response (FDIR) service, the client can confidently avoid the worst risks from a ransomware attack, make risk-based decisions, and continue its aggressive growth.