Security Response Services

When a security breach occurs, a quick and accurate response is critical to minimize the damage. The Division of State Information Technology’s (DSIT) Chief Security Officer staff provides the following response services:

• Incident Response
• Trusted Enterprise
• Virus/Malware/Trojan Removal

Understand the Service

• Incident Response
  Provide rapid reaction to any intrusion to determine the security gap in order to minimize damages.
    
  With increasing dependence on distributed networks, outsourcing of services and reliance on the Internet, agencies become more vulnerable to security breaches. When the existence or potential existence of a security breach has been detected, reaction time is critical. Your telephone call to the Computer Security Incident Response Team (CSIRT) will initiate a search to locate the security breach, recommend a solution and work with you or your third party representatives to effectively and immediately secure the breached system. 
    
• Trusted Enterprise
  Your systems, networks and data are all vulnerable to current cyber threats. With remote “snapshots,” your systems can be periodically checked and resource abuses identified. 
    
  An Enterprise Investigative Infrastructure in place provides security to systems, networks and data by remotely analyzing and reporting snapshots of volatile data running on all your systems. The volatile data collected consists of user information, port information, open files and all running processes. A comparison of these snapshots will show all of the machines that have been compromised during an intrusion or show the spread of a virus and where it originated.
      
  This unique ability to audit large groups of machines for unauthorized processes will allow us to respond immediately to any “Zero Day” event.  Any hidden or unauthorized process can be detected and removed including spyware, malware, viruses, trojans, keyloggers, adware, rootkits or hacking tools.  After an unauthorized process has been discovered, it is investigated and all malicious code identified. This knowledge can be used to create a script that can kill and delete the rogue processes and files.
     
  Through Trusted Enterprise, your agency will benefit from access to the:
     
  • Only available commercial solution that can find and remediate Windows-based rootkits.
  • Only truly secure and scalable network-enabled forensic investigation platform.
  • Only tool that can investigate systems without firewall changes anywhere in the world.
  • Only solution that can cleanly kill and delete any process across a Wide Area Network.
     
• Virus/Malware/Trojan Removal
  Having trouble with malicious code on your network or systems? We have tools that can track down those pesky bugs and eliminate them at the source. We can monitor your network, analyze your systems to find the offending process and research and eliminate the threat.

Why Use DSIT?

• Our security engineers are trained, certified and experienced with all major security solutions.
• We have purchased the best tools in the industry for compliance with security best practices.
• We have many industry contacts and when we do not know the solution we know who does.
• We have researched and developed the best procedures and solutions.

Rates/Pricing
Please contact the DSIT Customer Relations by calling 803-896-0330 or send an
e-mail to customerservice@cio.sc.gov.

Questions? or Ready to Order
Please contact DSIT Customer Relations by calling 803-896-0330 or send an e-mail to customerservice@cio.sc.gov.

How Am I Billed?
Security Response services are billed via the Customer Care billing system using standard State processes.

Top of Page