Critical to the effectiveness of any IT security program is its Computer Security Incident Response Capability (CSIRC). NIST defines a computer security incident as “An adverse event in a computer system or network caused by a failure of a security mechanism or an attempted or threatened breach of these mechanisms”. When faced with an incident, an organization should be able to respond quickly in a manner that both protects its own information and helps to protect the information of others that might be affected by the incident.

Radius Technology Group’s incident response service offerings define and establish the resources necessary to prevent, identify, respond to, resolve and report computer security incidents that may adversely impact an agency’s information technology resources, and therefore its ability to accomplish its mission. We work with agency personnel to establish policies, awareness and procedures to address the following areas:

Training and awareness – we work to establish specific roles and responsibilities towards incident response. We train personnel on their roles and ensure awareness of established security practices, and protection of resources pervading an agency’s staff.

Success Story
The Radius Technology Group Security team supported the Bureau of Alcohol, Tobacco, and Firearms (ATF) CSIRC activities by providing personnel to act as the lead for all CSIRC activities. Further, we successfully created ATF’s current CSIRC policy and established a CSIRC reporting procedure. Our activities have increased the number of reported incidents and investigations by approximately 200%. This has facilitated ATF’s “A” grade from the Department of Justice Computer Emergency Response Team (DOJCERT) and shown the effectiveness of our continued support.