Digital Forensics G-Cloud Service Definition



Similar documents
Router and Vetting G-Cloud Service Definition

ISO Information Security Management Services (Lot 4)

Specialist Cloud Services. Acumin Cloud Security Resourcing

SERVICE DEFINITION CYBER SECURITY SERVICES CONTENTS

ediscovery G-Cloud V Service Definition Lot 4 SCS Contact us: Danielle Pratt Tel: G-Cloud@esynergy-solutions.co.

DIGITAL FORENSICS AND CYBER INCIDENT RESPONSE SERVICES

G-Cloud Service Definition. Atos Information Security Wireless Scanning Service

IPL Service Definition - Data Recovery, Conversion and Migration

Growth Through Excellence

G-Cloud 7 Service Definition. Atos Oracle Cloud ERP Implementation Services

G-Cloud Service Definition. Atos Oracle Cloud ERP Implementation Services

GPG13 Protective Monitoring. Service Definition

PSN Protective Monitoring. Service Definition

CASSIDIAN CYBERSECURITY SECURITY OPERATIONS CENTRE SERVICES

Protective Monitoring as a Service. Lot 4 - Specialist Cloud Services. Version: 2.1, Issue Date: 05/02/201405/02/2014. Classification: Open

Deloitte Service Code: D-G6-L4-543 December 2014

as a Service - Microsoft Exchange G-Cloud Service Definition

Committees Date: Subject: Public Report of: For Information Summary

Cloud Enablement. Lot 4 - Specialist Cloud Services. Version: 3.0, Issue Date: 05/02/2014. Classification: Open

Firewall Administration and Management

D-G4-L4-231 Data Governance Assessment Design and Implementation Deloitte LLP Service for G- Cloud IV

SmartImpact MS Dynamics CRM. Support Service Definition

KPMG Advisory. Microsoft Dynamics CRM. Advisory, Design & Delivery Services. A KPMG Service for G-Cloud V. April 2014

D-G4-L4-126 Police contact management and demand reduction review Deloitte LLP Service for G-Cloud IV

Customer Relationship Management Software Package G-Cloud Service Definition

Specialist Cloud Services Lot 4 Cloud EDRM Consultancy Services

Cyber security. Cyber Security. Digital Employee Experience. Digital Customer Experience. Digital Insight. Payments. Internet of Things

Cloud Enablement. Lot 4 - Specialist Cloud Services. Version: 2.0, Issue Date: 05/02/2014. Classification: Open

Cyber Security Evolved

Log and Refer Service Desk IL0. September 2013

MDM & ENTERPRISE MOBILITY SERVICE DESCRIPTION G-CLOUD 7 OCTOBER 3, 2015

IBM G-Cloud Application Systems Management as a Service

Specialist Cloud Services Lot 4 Cloud Printing and Imaging Consultancy Services

G-Cloud Service Definition. Atos SI Oracle CRM and CX Services

Lima Law Enforcement Edition

Lot 1 Service Specification MANAGED SECURITY SERVICES

Service Definition Document

Small businesses: What you need to know about cyber security

INFORMATION SECURITY TESTING

Spyders Managed Security Services

Cloud Brokerage. G-Cloud Service. Arcus Global

CYBER SECURITY TRAINING SAFE AND SECURE

Service Management and ICT Monitoring and Reporting Advisory and Implementation Services

PTS Service Definition Document. G-Cloud 7. IT Service Continuity Management

Audit Management. service definition document

Security Overview. A guide to data security at AIMES Data Centres. TEL: enquiries@aimes.

Big Data Analytics Service Definition G-Cloud 7

CenturyLink IT Consulting Services. G-Cloud 6 - SCS. REFERENCE NUMBER RM1557vi

NSW Government Digital Information Security Policy

G-Cloud Service Definition. Atos Call Centre Services SCS

The Cadence Partnership Service Definition

SERVICE DEFINITION G-CLOUD 7 SECURE FILE TRANSFER DIODE. Classification: Open

WHAT YOU NEED TO KNOW ABOUT CYBER SECURITY

Digital Asset Manager, Digital Curator. Cultural Informatics, Cultural/ Art ICT Manager

Cyber Security - What Would a Breach Really Mean for your Business?

Cyber Security and Privacy Services. Working in partnership with you to protect your organisation from cyber security threats and data theft

Vodafone Private Cloud

GPS G-Cloud Lot 4: Oracle Business Intelligence Cloud Consultancy Service Definition

FM & SECURITY SOLUTIONS. SSS Managed Services. Impartial, innovative, involved

IPL Service Definition - Data Quality

Information Security Incident Management Policy and Procedure

Mike Smart Cyber Strategist & Enterprise Security Solutions, EMEA. Cyber: The Catalyst to Transform the Security Program

STL Microsoft SharePoint Consulting and Support Services

Applications and Solutions Architecture Cloud Services

SERVICE DEFINITION DOCUMENT MANAGEMENT IN THE CLOUD

Certified Identity and Access Manager (CIAM) Overview & Curriculum

G Cloud III Framework Lot 4 (SCS) Project Management

The Challenge with Innovative Learning. Recognising the Challenge. Partnership self directed learning communication learning support

G-Cloud Service Definition. Atos infrastructure Vulnerability Scanning (Outpost24) SaaS

IPL Service Definition - Master Data Management for Cloud Related Services

G-Cloud Service Description. Atos: Cloud Professional Services: Requirements Specification

Secure Remote Backup (IL3) G-Cloud Lot3 IaaS

End-User Remote Support and Helpdesk Services

Information Governance Strategy and Policy. OFFICIAL Ownership: Information Governance Group Date Issued: 15/01/2015 Version: 2.

THE WORLD IS MOVING FAST, SECURITY FASTER.

Information Governance Strategy & Policy

G- Cloud Specialist Cloud Services. Security and Penetration Testing. Overview

G-Cloud Service Definition. Atos Oracle Database Upgrade

AUSTRALIAN GOVERNMENT INFORMATION MANAGEMENT OFFICE CYBER SECURITY CAPABILITY FRAMEWORK & MAPPING OF ISM ROLES

IT Professional Standards. Information Security Discipline. Sub-discipline 605 Information Security Testing and Information Assurance Methodologies

Overview. Service Description: BCP & DR Strategy (L6)

Information Security Management System (ISMS) Policy

IBM G-Cloud Microsoft Windows Active Directory as a Service

CyberSecurity Solutions. Delivering

Domain 1 The Process of Auditing Information Systems

UoD IT Job Description

GCloud Application Development Service Definition. Application Development

Transcription:

Digital Forensics G-Cloud Service Definition 2013 General Dynamics Information Technology Limited. All rights

1 GDIT Team Clients Metropolitan Police Service The General Dynamics Information Technology (GDIT) Limited Team s Digital Forensics services leverage our UK-based, accredited facilities, advanced technologies and court-certified expert witnesses to deliver a rapid IT incident response capability for any organisation. The GDIT Team has extensive experience supporting police, investigative agencies and Public Sector organisations. We continually update our tools, expertise and techniques to adapt to the evolving technological landscape. We can rapidly detect and limit the impacts of security breaches, whilst providing expert analysis and detailed recommendations that assist organisations in assuring systems, applications, information and cloud based operations are more effectively guarded from future theft, loss or misuse. Surrey Police Authority Leicestershire Trading Standards Service Includes The GDIT Team supplies ISO 9001, PRINCE2, ISO 20000 and ISO 27001 registered companies with experienced, accredited digital forensic staff. We provide a comprehensive range of digital forensic services, including analysis and investigation of computers, smart phones, tablets, satellite navigation units and other digital devices. Our IT forensic services include: Police Service of Northern Ireland US Federal Bureau of Investigation US Department of Homeland Security Seizing evidence in accordance with legal guidelines and in the most effective manner to maintain evidential weight and minimise disruption to the business Deploying specialist equipment to detect and prevent attempted system intrusions, breaches and unauthorised activity Analysing system information for evidence of breaches of security policy or laws Forensic readiness planning and reviews of organisational IT infrastructure to support forensic incident response Analysing software for malicious intent (malware) Reviewing, updating or drafting new incident handling standards or guidance Developing new forensic techniques and finding new applications for existing techniques Acting as an expert witness, where required Producing reports, metrics and dashboards Providing digital forensics and incident response service desk Data handling and validation Digital Forensics Services in conjunction with GDIT s Integrated Security Services provide a 360 view of threats and vulnerabilities through all facets of security. Please see our Integrated Security Services Catalogue entry for additional information.

2 Key Features and Benefits 3.9 million annual investment in staff professional development programmes delivers expert knowledge on the latest technological and cyber security trends to permit customers to better defend against attacks Formally trained forensic staff and accredited expert witnesses, certified in the latest tools and techniques for evidence gathering, to assure thorough, court-admissible digital forensic investigative results GDIT s Director of Cyber Security applies over 30 years of comprehensive Government security expertise to assure the quality and proficiency of our cyber security services Fully accredited, UK-based, security vetted (up to IL5-List X) facilities that rely on proven processes and an automated case management system to provide customers with a cost-efficient, completely secure and highly effective digital forensics service delivery model Court-accepted forensic tools and practices, along with our unique ability to develop bespoke tools that adhere to court-accepted processes, assure success even with new and emerging technologies Pricing Computer Forensic Analyst / Technician 700/ day Senior Forensic Analyst 930/ day Principal Forensic Expert 1,400/ day Our Principal Forensic Expert is an industry-recognised leader in their field capable of providing full advisory and consultancy services for the most challenging digital forensics problems. For the vast majority of customer incident response requirements, the services of the Senior Forensic Analyst and/or Computer Forensic Analyst/Technician deliver comprehensive, accurate results meeting all evidentiary requirements. For More information www.uk.gdit.com g-cloud@gdit.com +44 (0)207 939 3672 General Dynamics is a 20 Billion/year, publicly listed corporation with almost 100,000 employees. We have been nominated to Forbes List of Best Managed Companies every year since the list s inception in 1999. We currently provide cyber security support to some of the largest, most sensitive and complex ICT environments in the world. Our status as a leader in the cyber security market allows us to attract and retain the best and brightest professionals in the field.

3 The GDIT Team offers a range of suitable pricing options, including: Fixed pricing per media type to be analysed Capped pricing per media type to be analysed Day rates that are pre-authorised using a forensic strategy process that provides an estimate of effort required to achieve the desired goals Our approach to forensic readiness planning is consultant led and includes the development of a forensic readiness plan that meets all the requirements for any organisation operating systems at Impact Level 2 or above. Our forensic readiness planning service prices start at just 2,900 based on our day rates. The GDIT Team also offers on-call digital forensic support that can be arranged with retainers from 290 per month to provide guaranteed service levels and rapid response support based on our day rates. This involves working with a client on a retained basis to provide forensic readiness consultancy as part of an overall approach to IT security incident management. The customer benefits from a guaranteed level of service and guaranteed availability of our expert services to respond to security incidents as they occur. Volume Discount- Volume discounts are available for longer-term engagements, retained services, customers seeking a recurring service on a regular basis, or large-scale efforts involving multiple consultants and will be discussed with potential customers on a case-by-case basis. Service Management The GDIT Team uses a proven service management approach that is specifically designed to fit our digital forensics market space. For each customer, we assign a dedicated Customer Relationship Manager who acts as the principle liaison between clients and our Service Delivery team, acting as the voice of the customer internally and the focal point for service reviews, meetings, and customer inquiries. The Customer Relationship Manager delivers an appropriate level of seniority and expertise for the size and complexity of the contract with the client. The GDIT Team builds customer coordination channels into the service support agreement as part of our on-boarding process and routinely maintains close coordination with our customers to ensure smooth service delivery throughout the term of the contract. These include designated communications and coordination processes for different types of incidents and forensic findings as well as for less specific customer discussions. The GDIT Team uses a comprehensive, integrated digital forensics case management system. This mature, thoroughly tested system enables efficient, comprehensive management of each submission in accordance with our standard operating procedures. We maintain a full record of each case on the system that integrates access to all exhibit details, chain of custody records, contemporaneous activity notes and interactions with exhibits right through to dispatch of exhibits and archiving of materials. The system is fully compliant with ISO 17025 and ISO 27037 standards and ensures all cases and digital forensic examinations are properly handled and tracked throughout the entire digital forensics service lifecycle.

4 Service Constraints The GDIT Service Delivery Model must ensure that proper legal authority exists for all work that we undertake. All services must comply with data protection, privacy, regulatory and statutory constraints within applicable jurisdictions for the incident under investigation. Service Levels The GDIT Team tailors the specifics of each Service Level Agreement (SLA) based on the specifics of each customer engagement. We can provide a range of appropriate service levels depending upon the client s requirements, logistical constraints and the technical feasibility of the requirements. Standard features of our SLAs include: Staffing: We warranty that all services will be performed by appropriately qualified and experienced staff. All staff are supervised by experienced and highly qualified seniors and managers, and all work is reviewed in line with our ISO 9001 standard operating procedures. Staff are tested for competence in each function they perform in line with the requirements for ISO 17025. We use only properly trained and certified staff with the proper technical knowledge of the technologies being examined and the tools being used. Service Hours: Our main laboratory operating hours are from 08:00 until 18:00 each weekday. We have the ability to provide 24/7 service using an emergency on-call, fully trained forensic analyst. Service Levels: For volume forensic analysis contracts, we typically provide service completion levels of 7, 14, 21 and 28 days for forensic analysis services, measured from the date of evidence collection. We can also provide more urgent services as required, including a 24 hour and 48 hour turnaround service. Financial Recompense Model for Not Meeting Service Levels The GDIT Team has assisted many organisations with large volumes of case work, operating to the most demanding timescales. We have handled over 3,000 cases, involving many thousands of digital forensic examinations and have never failed to meet our service level targets with any contractual clients. Performance is measured against defined service level warranties which are included in the SLAs. The GDIT Team s sole and exclusive obligation and Customer sole and exclusive remedy for failure to meet the specified service levels shall be limited to the payment of Service Credit(s). The definition and payable amount of a Service Credit is also contained in the SLA. Specific recompense models can be negotiated during the initial customer engagement and formalised as part of our on-boarding process. Ordering and Invoice Process GDIT will require an authorised Call-Off Agreement or work order from the customer covering the full value of the services required. GDIT will invoice as agreed in the Call-Off Agreement. This may be on the achievement of key deliverables, at regular intervals or stages in the service or upon completion of the service to be determined with the customer on a service by service basis. All invoices will be issued in electronic or paper format to the address designated by the customer. Payment of invoices must be made within 30 days of issue and by BACS.

5 Termination Terms Termination clauses and terms exist for all of our services and are fully described in the Supplier Terms for Digital Forensics. pdf document. These include termination fees where the customer terminates services for their convenience prior to the end of the complete term of the contract. There is no cost for normal termination of services at the end of the contracted period. Any normal activities associated with termination as part of our standard off-boarding process do not incur any additional fees. Customer Responsibilities Customers are responsible for proper evidence handling and preservation techniques when an incident is first discovered. This is essential in order to permit digital forensics experts to properly gather and extract that evidence in line with ACPO and other guidelines where digital forensics are required to support criminal or civil actions. Optional training is available on proper IT forensic evidence collection and handling techniques that may assist organisations in enhancing their incident handling, investigative and response processes. Data Storage and Processing Locations All our digital forensics facilities are located within the United Kingdom and are court-approved for evidence handling and storage. All evidence processing is done using appropriately vetted and experienced UK citizens.

Cottons Centre Cottons Lane London, SE1 2QG www.uk.gdit.com Tel. +44 (0) 20 7939 3672 g-cloud@gdit.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information