Cybereason Blog | Cybersecurity News and Analysis

New Cybereason Incident Response and Professional Services Bundles Include Unlimited Support

Written by Dan Verton | May 10, 2022 12:25:56 PM

Cybereason has launched subscription-based bundles for Incident Response (IR) and Professional Services teams that deliver the speed and agility needed to identify, correlate, and quickly contain threats while reducing costs by as much as thirty percent.

When it comes to Incident Response, time is of the essence. The longer it takes to detect threat activity, investigate an incident and remediate systems across highly distributed environments, the more time adversaries have to dig deeper into your environment and compromise critical systems and data.

The newly released Cybereason subscription-based service is delivered to customers and partners through a single self-service portal with access to the elite Cybereason IR team, continuous threat intelligence, and proactive assessments. Also included in the Premium bundle is unlimited IR, a game-changer in the industry.  This is a significant improvement compared to existing IR services in the market, which suffer from long deployment times, manual data stacking, expensive IR retainers, and reactive and fragmented services.

The Cybereason automated Forensics-as-Code (FaC) EngineTM uncovers the threat actor’s tradecraft and intent by parsing and ingesting data powered by the AI-driven Cybereason XDR Platform. Enriching the existing MalOp ™ (malicious operation) with historical data collected before landing on the endpoint, the service provides complete visibility of the incident. The FaC EngineTM reduces the analyst's investigation time by 60% to gain end-to-end visibility with high-value telemetry by reducing manual methods and data stacking methods. 

A dedicated team of Cybereason Incident Responders will work to fully remediate and recover all infected endpoints while also providing detailed forensic reports that help improve the organization’s security posture. 

The Cybereason Nocturnus Threat Intelligence Team provides incident responders insight into the attackers' tactics, techniques, and procedures (TTPs), aiding in complete threat response and remediation. Post-incident reports provide detail and visibility into every MalOp, providing insight into vulnerabilities and recommendations for an improved security posture:


The Cybereason Professional and IR Services Portal

Cybereason Professional and IR Services customers will have access to the single self-service portal that provides Professional Services, Incident Response, and Threat Intelligence reports.  

Benefits: 

  • Packages designed to suit the needs of any size organization
  • Security experts designated to help you before, during, and after an attack
  • Meet compliance and regulatory requirements

Professional Services

  • Threat Intelligence: Global Insights: Cybereason Threat Intelligence provides attacker insights, trends, and adversary information that will help you improve your security posture and identify potential targets within your environment.
  • Compromise Assessment: Compromise Assessment (CA) provides a complete and fast review of customers’ systems to identify evidence of past or current compromises. In case traces of intrusion are identified, Cybereason performs initial forensic verification and provides an option to pivot from Compromise Assessment to Incident Response service.
  • Security 101: Security 101 collects data across the customer environment on managed and unmanaged systems, performs security hygiene checks to uncover weaknesses, and provides recommendations to bolster security and IT hygiene. 
  • Security Validation: Security Validation is a proactive measure to assess an organization's cyber resilience by reviewing the customer's infrastructure to identify weaknesses that are known to be frequently abused by attackers. A single package combines attack surface discovery and active directory security health checks, all orchestrated to provide the most practical and immediate value to identifying security weaknesses that truly matter. 
  • Incident Response (IR): Best-in-class experts rapidly deploy remote and scalable Incident Response to investigate the incident in minutes and stop the attack in its tracks to reduce future damage and loss. Leveraging DFIR and Forensics-as-Code (FaC) technologies, the Cybereason IR team will work with an organization to uncover all instances of malicious activity quickly and efficiently, saving time and money.  


Cybereason is dedicated to teaming with defenders in both the public and private sectors to end cyber attacks from endpoints to the enterprise to everywhere. Learn more about the Cybereason DFIR advantage here or schedule a demo today to learn how your organization can benefit from an operation-centric approach to security.