Dave Burg
Global Head of Cyber Risk
Washington DC
Cyber Risk and Incident Response Retainers
Gain peace of mind in a crisis with guaranteed response times, proactive consulting, and specialist support just a phone call away.
Contact UsEvery organisation must be prepared to respond quickly and effectively to a cyber incident to ensure continuity of operations and protect their reputations. Privacy and consumer protection regulations also require timely response and notification for cyber incidents.
Kroll’s cyber risk retainer offers maximum flexibility and transparent pricing to ensure our clients get tangible value for their money and have peace of mind knowing they can depend on our prioritised response and global resources in a crisis.
Our cyber risk retainer can adapt to and maximise a company’s existing security stack, so there’s no need to buy new tech. Clients can also leverage our comprehensive slate of cyber risk solutions to strengthen their overall resiliency.
Customisable Incident Response Retainer
Kroll understands that the prospect of preparing for and responding to a cyber incident is fraught with unknowns. Our robust but flexible cyber risk retainer can be adapted to any business, ensuring our clients have the comfort of knowing Kroll’s cyber risk experts will respond immediately to contain and remediate any incident. Whether it is for taking proactive security measures or responding to a breach, Kroll’s cyber risk retainer services are configurable to the needs and environment of any organisation, regardless of the technologies they use.
Our retainer options help alleviate the pressure organisations feel to maximise the value of their cybersecurity investments with an upfront service and pricing structure.
How Flexible is the Cyber Risk Retainer?
Unlike most providers, you can customise retainer packages to include a wide range of services:
Vendors | Digital Forensics | Incident Response | Breach Notification | Testing & Assessments | Tabletop Exercises | Litigation Support |
|---|---|---|---|---|---|---|
Kroll |  | | | | | |
Others |  |  |  |  |  |  |
Client Testimonials
 | “As a Cyber Risk Retainer client, we have appreciated Kroll’s expedited response for potentially critical issues. Their subject matter expertise allowed us to contain a situation prior to it developing into a significant issue.” – Option Care Health |
 | “Kroll's Cyber Risk Retainer program gave us the flexibility to utilise our retainer credits to help us accomplish some of our IT security goals during the year, while having the peace of mind that we had a Tier 1 partner to quickly respond if we had some type of cyber incident.” – Netscout Systems, Inc |
Incident Response Retainer Service Features
- Prompt access to an elite, global team of more than 500 elite incident response and breach notification experts
- Rapid response service levels to provide peace of mind in an emergency
- Robust proactive services to secure systems in advance of an incident, including tabletops, simulations, risk assessments, penetration testing, policy reviews and advised strategy
- Maximum flexibility to choose from a wide array of cyber risk services
- Ability to roll over a portion of unused retainer credits
- No minimum hourly usage or lead time requirements
- Tech-neutral services that can be catered to any client’s security stack
- Discounted rates for hourly cybersecurity services offered by Kroll
- Compatibility and pre-negotiated rates with over 60 major cyber insurance carriers
Cyber insurance plays an integral role in mature cybersecurity systems. Fortunately, Kroll is an approved vendor for more than 60 cyber insurance carriers around the world. We have a dedicated insurance team to help our clients handle claims effectively.
Choose the Incident Response Retainer Option That Fits Your Organization’s Posture and Need
Premier | Plus | |
|---|---|---|
Response Time Service Levels | Incident support contact within two hours (24/7/365) | Incident support contact within four hours (24/7/365) |
Service Credits Application | 100% of retainer credits can be applied towards any cyber risk consulting service | |
Rollover Credits | Up to 20% of unused services credit may be applied to the following year upon renewal | |
Rate Discount | 15% discount on any additional hourly-based proactive or incident response cyber risk service | 10% discount on any additional hourly-based proactive or incident response cyber risk service |
Customise Your Incident Response Retainer for Optimal Coverage
Unlike most cyber risk firms, Kroll lets clients customise their cyber risk retainers to meet their unique security needs by choosing from a wide range of proactive, response and notification service options. Available services include:
Proactive and Managed Services
- Application Security
- Threat Modelling
- Cyber Risk Assessments, including cloud, email, web apps
- Managed Detection and Response
- Cyber Security Awareness Training
- Ransomware Preparedness
- Insider threats
- Stolen devices
- E-commerce and web application compromise or fraud
- PCI forensic investigation (PFI)
Notification and Monitoring Services
Peace of Mind and Expert Support Just a Call Away
Kroll manages over 3,000 cyber investigations every year for clients of all sizes and complexities. We also have decades of experience helping clients notify customers affected by breaches. We can help you determine the right cyber risk retainer for you, beyond incident response. For peace of mind and support before and during an incident, speak with one of our cyber experts today.
Talk to a Cyber Expert
Kroll is ready to help, 24x7. Use the links on this page to explore our services further or speak to a Kroll expert today via our 24x7 cyber hotlines or our contact page.
Frequently Asked Questions
Incident Response Tabletop Exercises
Kroll’s field-proven incident response tabletop exercises provide a customised test of every aspect of an organisation’s cyber response plan.
Incident Response Plan Development
Today, you learn your company is experiencing a serious cyber incident. It could be a ransomware attack, a hacked O365 email account, the theft of PII or PHI, data exposure from misconfigured network settings. What is the first step you should take?
Optimised Third-Party Cyber Risk Management Programmes
Manage risk, not spreadsheets. Identify and address cyber threats in third-party relationships to ensure compliance with regulations such as NYDFS, FARS, GDPR, etc.
Third Party Cyber Audits and Reviews
Kroll’s cyber audits and reviews ensure third parties handle sensitive data according to regulatory guidelines and industry standards.
Cyber Governance and Risk
Manage cyber risk and data security governance with Kroll’s defensible cybersecurity strategy framework.
FAST Attack Simulation
Safely perform attacks on your production environment to test your security technology and processes.
Securing Microsoft 365: Avoiding Multi-factor Authentication Bypass Vulnerabilities
Digital Forensics and Incident Response
Securing Microsoft 365: Avoiding Multi-factor Authentication Bypass Vulnerabilities
November 21, 2024
by Krystina Lacey
Threat Landscape
Q3 2024 Threat Landscape Report: Rising Attacks on Tech and Telecoms Reinforce Need for Business Continuity Planning
November 21, 2024
by Laurie Iacono, George Glass, Keith Wojcieszek
Cyber
LLM Risks: Chaining Prompt Injection with Excessive Agency
November 13, 2024
by Alex Cowperthwaite, Pratik Amin, Kassidy Marsh
Threat Intelligence
September Threat Intelligence Spotlight Report
October 21, 2024
by George Glass, Keith Wojcieszek, Laurie Iacono
Kroll is headquartered in New York with offices around the world.
55 East 52nd Street 17 Fl
New York NY 10055
Sign up to receive periodic news, reports, and invitations from Kroll.
Our privacy policy describes how your data will be processed.
© 2024 Kroll, LLC. All rights reserved.
Kroll is not affiliated with Kroll Bond Rating Agency,
Kroll OnTrack Inc. or their affiliated businesses. Read more.