...
This document provides an overview of Armor incident response plan that has been established to swiftly respond to any information security issues, eliminate threats, evaluate risks, assist in remediation efforts and for continual process improvement. Armor will follow this Incident Response Plan (IRP) and do so within the Service Level Agreement (SLA) The target audience for this document is Armor’s customer members, responsible for responding and managing incidents impacting your environment.
PROCESS OUTLINE
- Overview
- How Armor Protects You
- Integration
- Armor Service Levels
- Armor Incident Response
- Armor Incident Severities
- Incident Response Process
- Armor Incident Response Process
- 1. Detection and Identification
- 2. Investigation
- 3. Containment and Mitigation
- 4. Remediation and Recovery
- Retrospective
- Collaboration Scenario
- Collaboration Channels
- Incident Response Preparedness
- 1. Public Verification of GPG Keys
- 2. Collaboration Channel Sharing
- 3. Ensure Asset Inventory is Current
- 4. Periodic Review
- Continual Improvement
- Periodic Review
- Rehearsal and Exercise of Plan
- Governance, Risk and Compliance (GRC)
- Summary
How Armor Protects You
Armor enables you to own your valuable data and configurations while leaving the management to us. Armor provides a managed, cloud-native, and DevOps-centric solution that provides detection and correlation capabilities across all aspects of your operation. Armor works with you to ensure your environment is secure and compliant using a shared responsibility model. This model allows you to focus on the aspects of the stack that you are uniquely qualified or positioned to maintain and rely on Armor to provide the reference architecture and guidance stemming from its expertise. \ \ To learn more about MDR Shared Responsibilities, see Managed Detection and Response(MDR) Shared Responsibility Model
...