Detect and Respond

Threat intelligence

We offer an 8x5 or 24x7 monitoring and analytics of security events, including triage, incident escalation, tailored SIEM content development for client and industry-specific cases and log source integration.

Challenges

Are we able to detect an attack? And if so, are we able to handle such an attack?

Common challenges that many companies suffer are often related to budget. Why is that?

While the common phrase is “people, process & technology”, the reality at the end of the day is that often the budget dictates the options – at least until an incident occurs!

We do see a challenge with companies having difficulties hiring staff with the correct skillset to handle sophisticated cyber threats. There is still a talent shortage, so utilising existing staff would be an option. However, it takes a lot of time and therefore poses an additional cost to lift up those resources to the needed skillset and allow them to gain the experience required.

Some companies might not have a department able to handle the threat detection-related activities, such as alert monitoring, triage and incident response. While other companies might have a department with IT security staff, but not the required skillsets to keep it in-house.

Keeping up with all the technologies and how to adapt them into the detection capability can be a challenge as it will require continuous training which again adds to the costs of having the service.

Our approach

Deloitte offers an 8x5 or 24x7 monitoring and analytics of security events, including triage, incident escalation, tailored SIEM content development for client and industry-specific use cases and log source integration.

Deloitte’s Threat Intelligence provides threat monitoring and analysis that provides a range of services which addresses the above listed challenges many companies have.

  1. Monitoring 8x5 to 24x7

    Deloitte provides Level 1 and Level 2 analysts who provide monitoring and analytics services of security events, including alert response, triage, rule maintenance and incident escalation. These services also include monthly reporting of the services provided.

  2. Use Case development and Maintenance

    With the focus on current cyber threats, knowledge from threat intelligence and our experience from incident response tasks, we build use cases to help customers increase detection rates. However, if required, custom use case development is also available as an option.

  1. Monitoring 8x5 to 24x7
  2. Use Case development and Maintenance

Deloitte provides Level 1 and Level 2 analysts who provide monitoring and analytics services of security events, including alert response, triage, rule maintenance and incident escalation. These services also include monthly reporting of the services provided.

With the focus on current cyber threats, knowledge from threat intelligence and our experience from incident response tasks, we build use cases to help customers increase detection rates. However, if required, custom use case development is also available as an option.

Why Deloitte?

Awarded market leaders

We strive to continuously lead the market in the area of cyber risk and security services. We are awarded and acknowledged by some of the most renowned institutions within the area of cyber, e.g. Gartner, ALM Intelligence and Forrester. In 2020, we were named global leader in Security Consulting Services for the 9th year in a row by Gartner.

Leading-edge technologies

We are committed to investing in innovation and emerging technologies to ensure that we are equipped with the latest tools to solve current and future challenges for our clients. Alliances with market-leading cyber vendors and groundbreaking startups around the world offer our clients access to a wide range of cyber-risk technologies and leading-edge technology innovation.

Global intelligence delivered locally

We have the largest professional services network in the world. Diversity across our cyber teams helps us work across the globe with a local and personal lens. We have over 8,600 dedicated cyber-risk service practitioners of which 1,300 are dedicated to Europe and the Middle East alone, ready to help our clients everywhere with any challenge.

End-to-end cyber-risk services

We cover every aspect of cyber risk — from advisory and implementation of strategic transformations to managed security services, product solutions and incident management. This enables us to deliver more resilient and silo-breaking solutions, taking the whole business chain into account. This helps our clients to leverage their potential and growth even more.

Reach out

If you recognise some of the challenges, or if you would like to know more on how we can help your company, do not hesitate to contact us.

Søren Tillebæk Jensen

Senior Manager