Incident Response

Here for you 24/7/365 to provide rapid response to cyber security incidents.

When every minute counts, our experts will guide you and your organization every step of the way from scoping and containing the incident, determining exposure through forensic analysis, and helping restore normal operations. Pondurance has built, refined, and optimized methods and technologies that deliver results. We are trusted across industries and have partnered with law enforcement on a national scale. Our reputation and experience across hundreds of incident response engagements make us the right choice to help you avoid and recover from a cyber crisis.

Executive Management

We work closely with business and security executives to proactively reduce business risk and provide timely response to urgent issues.ㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤㅤ

Insurance Providers

Brokers and major carriers recognize us as a go-to-provider for Incident Response (IR) and digital forensics engagements. We specialize in building pre-incident relationships in order to facilitate rapid on-target response and reduce the cost of incidents.

Attorneys/In House Counsel

We partner with leading law firms that specialize in cybersecurity and privacy matters. Whether you represent a firm or provide direct in-house counsel, we have the experience you need and support the highest level of confidentiality and operational security regarding all matters.

We Put the R in MDR

Our DFIR Teams are the special forces of the cybersecurity world, quickly neutralize threats and stopping in-progress attacks. Through our Managed Detection and Response (MDR) service, we proactively partner with customers to uncover threats before damage or loss occurs.  Our deep and diverse team is built around specializations that differentiate us from other IR providers. Our teams include the following competencies:

Our incident responders rapidly engage with the primary objective of scoping the incident and containing it. Containment of any incident is essential in order to stop the spread of infection, eliminate the possibility of recurrence, and facilitate recovery. Our responders are experienced and know exactly how to engage with immediate results.

Every crisis situation, including a cyber security incident, needs a cool and dispassionate head to seamlessly orchestrate activities toward the desired end state. Our incident handlers are trained to provide effective situation management, coordinating and tracking all activities, while directly interacting with company management. Our Incident Handlers have the deep level of governance and compliance expertise required in heavily-regulated industries.

 The perishable nature of digital evidence requires proper handling and an extremely specialized skillset.  Specialists with deep technical forensic skillsets are some of the scarcest resources in all of IT and can determine the success or failure of an incident response engagement.  Our specialists hone their skills through frequent real world engagements and  training scenarios, spanning: advanced event triage and forensics; malware reverse engineering; exploit kit inoculations; anti-forensics mitigation; disk and file level forensics; and data extraction and recovery.

Incident Response

Pondurance's IR approach combines the industry-leading Threat Hunting and Response platform with an experienced team of threat hunters to provide the following:


Identify and detect an incident as soon as possible


Stop the incident from propagating or extending its impact


Eliminate the source and prevent a recurrence


Return to operations, conduct post-breach investigation

Seamless Transition from DFIR to MDR

Our numerous successes in DFIR have resulted in a majority of those clients wishing to continue a relationship with Pondurance.  Many have transitioned from incident response mode to full time clients within our Managed Detection and Response (MDR) service.  Our MDR solution provides an always-on, 24/7 approach to operational security monitoring, with proactive threat hunting, to find and stop security incidents before they impact your assets and operations. The big “R” in MDR is RESPONSE, which means that we enable a Closed-Loop Incident Response process that allows us to transition seamlessly, efficiently and effectively from hunting to incident handling at the moment it is needed.  Learn more about becoming an MDR services client here, and get in front of incidents before they can bring harm to your assets and operations.


Certification denotes a discipline and commitment to continuing education. In the fast-evolving world of information technology and cyber security, Pondurance is committed to keeping our teams at the knowledge forefront, and become knowledge capitalists that provide insight and cutting edge demonstration of Threat Hunting + Response. Some of the relevant certifications our DFIR team members hold include:

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Security Manager (CISM)
  • Certified Business Continuity Professional (CBCP)
  • Certified Information Systems Auditor (CISA)
  • Certified Computer Forensics Examiner (CCFE)
  • Certified Ethical Hacker (CEH)
  • Information Systems Security Architecture Professional (ISSAP)

  • Certified in Risk and Information Systems Control (CRISC)
  • GIAC Certified Incident Handler (GCIH)
  • Certified CSF Practitioner (CCSFP)
  • CompTIA Security+ certification
  • Offensive Security Certified Professional (OSCP)
  • GIAC Certified Forensics Analyst (GCFA)
  • Lean Six Sigma Black Belt, and National
  • Incident Management Systems (NIMS)
  • PCI DSS Qualified Security Assessor (QSA)

Free Download: How Digital Forensics Answers the Question and Shapes the Future of Cyber Insurance                                         Download