Our Goal

Assist a medium-sized (312 employees) defense contractor (client) based in Texas in developing a Department of Defense (DoD) specific incident response plan.

Arlington Security Portal

Get Access to 100 + NIST RMF security and privacy policies & procedures, programs, and plan templates.

Learn More

Challenges & Needs

The client had won a significant contract with the DoD, and as such, needed to strengthen their documentation, one of which was developing a formalized incident response plan. Additional challenges included the following:

Antiquated Information Security policies and procedures: Information security policies and procedures existed, but they were old, had not been updated in years. As such, their current incident response plan was written more than a decade ago.
Inadequate Incident Response Controls: Along with a much outdated incident response plan, the client also lacked structured processes and procedures on how to effectively manage an incident.
Missing Incident Response Tools and Solutions: The client was also missing a number of essential security tools and solutions that were highly essential for effective incident response management.

Our Solution

Arlington successfully implemented the following strategies and solutions:

Successfully defined project scope, including roles and responsibilities for all internal personnel at the client.
Identified gaps and deficiencies within the client’s current incident response measures, offering expert recommendations on remediation and next-steps.
Established and put into operations an all-new cyber incident response and reporting program as required by the DoD.
Established contact and strong working relationships with all in-scope third-party vendors (i.e., managed security services providers) for ensuring they have a sound understanding of their respective roles and responsibilities when an incident arises.
Additionally, developed all required supporting information security and cybersecurity policies and procedures for helping ensure the full and proper execution of the incident response plan.
Successfully remediated all technical and security incident response controls that previously had notable gaps.

Challenges Solved

Implementation of a true incident response plan as required by specific DoD guidelines.
Additionally, developed all required supporting information security and cybersecurity policies and procedures for helping ensure the full and proper execution of the incident response plan.
Successfully remediated all technical and security incident response controls that previously had notable gaps.

Value Created

Put in place a corporate culture that now understands, respects, and truly values the concept of information security.
Developed and implemented a highly structured incident response plan with formalized and well-documented internal controls.
Successfully met the rigorous DoD compliance requirements relating to incident response.

Why Arlington?

We are Arlington, a team of innovative, solution-oriented, highly agile, and well-versed professionals with decades of experience in working with America’s defense industry. From emerging cybersecurity regulations to helping our clients solve complex security & compliance solutions – and so much more – you can trust Arlington, the firm that’s Dedicated to Defense®. Sidebar