Help when you need it most

When dealing with a cyber incident, quick and effective action is vital. Bulletproof’s cyber incident response team will help you minimise the impact and take prudent steps to get your business back on track. Cyber incidents come from a variety of sources, so Bulletproof’s experienced security analysts are always up-to-date with latest threat intelligence, meaning we can identify threat actors and compromise vectors, and swiftly apply full remediation in-line with CREST, NIST and ISO 27035 standards.

Cyber incident response

Professional recovery from cyber incidents, such as ransomware, rogue employees and more

24/7 crisis team

Hackers never take a day off, so our Crisis Team are available round-the-clock

Recover with minimal disruption

Restore services with minimal disruption to your business operations

Post-incident support

Post-incident support, with recommendations and a comprehensive report


Secure your future by acting today

Bulletproof CIRT service operates on a retainer model to give you the best possible response time. By pre-agreeing the commercials and contract terms, we can begin professional security incident response practices from the first moment you get in touch. This means no need to negotiate tricky Ts & Cs or consider costs in the middle of a crisis.

Plus, thanks to our on-boarding security audit, we’ll already know the details of your infrastructure, hold contact details of key stakeholders, and have an approved response plan in-place and ready to go.


How does it work?

Our Security Incident Response process is set in three distinct stages, in-line with industry standards and best practices:

  1. PREPARE
    Risk and impact assessments, define the Cyber Security Incident Response (CSIR) framework, agree commercials and perform a security audit
  2. RESPOND
    24/7 response, including incident classification, triage, containment, eradication and business recovery
  3. SUPPORT
    Forensic services, trend analysis, reporting, lessons learnt, and feedback into the CSIR framework

Bulletproof your organisation's security

Don’t wait for a cyber security incident to affect your business – take proactive action and increase your security with Bulletproof’s industry-leading cyber threat protection services. From adept penetration testing to comprehensive real-time protection from our Managed SIEM service and beyond, Bulletproof is your best defence from cyber threats.

  • Bulletproof are CREST approved

    CREST approved

  • Bulletproof are ISO 27001 and 9001 certified

    ISO 27001 and 9001 certified

  • Bulletproof are Tigerscheme qualified testers

    Tigerscheme qualified testers

  • Bulletproof are a PCI DSS v3.2 Level 1 service provider

    PCI DSS v3.2 Level 1
    service provider

  • Bulletproof have 24/7 on-site Security Operations Centre

    24/7 on-site Security
    Operations Centre

Frequently asked questions

How fast is the initial response?

Bulletproof will respond as soon as we are made aware of a security incident. This time can be reduced with good communication. Our analysts will look to isolate and resolve any issue as quick as possible. How long this will be will vary depending on the issue and how much information we have to work on. Combining incident response with our 24/7 managed SIEM services will dramatically reduce the time to resolution.

How can the cyber incident response team mitigate any attack?

The Bulletproof cyber incident response team can mitigate a number of different attacks. Each one may require a different approach, but armed with the right knowledge and tools, the team can react as needed. For example, a DDoS attack can be mitigated by redirecting traffic through our high-capacity traffic mitigation platforms. Corrupt or compromised data can be restored by our forensics specialists and our SOC analysts can track potentially threatening IP addresses. Whatever the threat, our cirt can respond appropriately and efficiently.

What are the benefits of a cyber security incident response team?

Not only will you receive a rapid response and ongoing support during a cyber incident from a crisis team that’s available 24/7, you will also receive a detailed report of all incidents with lessons learned, trend analysis and access to discounted forensics if needed.

How much does the incident response retainer cost?

All incident response plans require a set up fee which can range from £1,995 - £4,995.

After this, Bulletproof offer two packages:

Incident response retainer cost
Package Includes Price
Essential Response Package
  • 24/7 phone triage
  • Next business day on-site support SLA
  • 1 day of on-site support included
  • Discounted rate on additional on-site days, including digital forensics
  • Yearly review of on-boarding activities is required to confirm CSIR framework suitability
£450
Enhanced Response Package
  • 24/7 phone triage
  • 12-hour on-site support SLA
  • 2 days of on-site support included
  • Discounted rate on additional on-site days, including digital forensics
  • Discounted yearly review of on-boarding activities to confirm CSIR Framework suitability
£950

Get a quote today

If you’re interested in our services, get a free, no obligation quote today by filling out the form below.