Startup Co3 Systems leapt out of stealth mode last week with a software-as-a-service offering that helps organizations automate their response after a data breach. The company, launched by security veterans John Bruce (Symantec, Counterpane, Authentica) and Ted Julian (Arbor Networks, @stake), says its SaaS offering eliminates manual processes and significantly reduces incident response time post-data breach.
“No one is focused on post-incident scenarios,” chief marketing officer Julian said in explaining the company’s positioning.
The tool helps organizations map incident response internally and simplifies communication with the media, customers, regulators and others required by law to be notified in the event of a breach. It can also run through possible attack scenarios and simulations and estimate losses and notification costs bad on pre-loaded templates of different regulatory mandates.
Julian said the service can provide an organization with a response play in fewer than 20 minutes. In addition to helping organizations conduct dry runs of an incident response plan, the tool helps define the scope of a breach and identify data that could be impacted. Security and incident response teams can also get an at-a-glance and up-to-date look at regulatory requirements, deadlines and penalties in the event of a breach, as well as a visual workflow of incident response tasks and the ability to track responsibilities for different members of an IR team.
Co3 is offering a three-month trial of its service, priced at $450 a month. Customers then have different price levels based on the number of annual incidents expected.