DFLabs, European leader in the field of Information Security Risk Management, announces the release of version 3.0 of the IncMan Suite, the solution that allows large organizations to manage information security incidents, within a single framework. IncMan Suite controls and manages the entire incident management flow, from artifact analysis to assessing the damage undergone and to complete cataloging and indexing of the digital evidence.
DFLabs’ IncMan Suite is made up of three modules that can operate both autonomously and integrated. The complete version of the Suite contains: IncMan Module, Digital Investigation Manager (DIM) and ITILity Help Desk Module.
The IncMan module is an integrated component in order to catalog every security incident from detection and mitigation to closure and report generation, thus guaranteeing the compliance with standards such as IODEF (RFC 5070). It enables the investigator to catalog and manage all information related to a breach of security incident. These incidents require specialized handling of a vast number of data inputs including the listing of all assets involved, artifact analysis and so on. With IncMan Module, everything can be tracked and managed.
DIM, the Digital Investigation Manager, is the forensic and evidence management module. This component manages images from the forensic duplication of the memory, photographic catalog, log files, thorough Chain of Custody details and interactions with authorities. For the forensic investigation processes, essential today in all large and medium-sized organizations, DIM is a vital support system ensuring compliance with regulatory requirements through appropriate storage and reporting of all information gathered while investigating a case.
The third component, ITILity Help Desk, enables an IT support center to centrally manage all calls and trouble tickets while sending real time notifications regarding the management of respective security incidents.
Additionally, the IncMan Suite Console contains a control dashboard allowing all parties involved, including the company’s CSIRT (Computer Security Incident Response Team) to simultaneously manage a security incident. Every member of the team can be assigned specific privileges, roles and activities that are centrally controlled. Thus, messages, tickets, tasks, damage assessment, legal and security aspects are dealt with in detail.
“We are particularly proud of the development effort that went into this latest release of our IncMan Suite,” declared Dario Forte, CEO and Founder. “Thanks to this new arsenal of tools, CIO, CISO, Incident Responders and Forensics Examiners, are now better equipped to respond to cyber-security incidents, precisely assessing the costs involved, documenting every detail for legal and audit purposes, and guaranteeing an unassailable Chain of Custody.”
Given the specific demands of the IncMan Suite can be purchased either in a unique solution or as individual components. The IncMan Suite is delivered worldwide on a hardened, server appliance or in preconfigured, virtualized components. Training and professional services make IncMan an essential solution for information security risk management. DFLabs also produces a well known tool, PTK Forensics (http://ptk.dflabs.com), which provides a superset of advanced functionality for the widely used forensic tool, The SleuthKit. PTK Forensics is integrated and fully compatible with the rest of the Incident Management Suite.