We help you to get the most out of your security budget and resources
The Best Solution For Your Security
Be well prepared for emergencies and find a strong incident response partner now. Retainers will provide you with rapid support from professionals in the event of a loss.
No matter what industry you are in, you can rely on experienced and competent experts to protect your cybersecurity infrastructure and effectively combat potential threats. Find the right incident response service provider with our support now and start with a no-obligation provider comparison.
Our provider directory - are you already part of it?
Our customers can receive offers from the following providers - and all others
Our Service for you
Simple. Clear. Affordable.
Bosch CyberCompare is the independent purchasing platform for CyberSecurity and your partner for the procurement of IT, OT and IoT security.
We will help you find the right provider in 4 steps and will be happy to advise you:
What our customers have to say about us
It's the Result That Counts
benefit from our knowledge and experience
Good to Know
Quickly intervening in an IT incident and taking countermeasures can greatly mitigate the impact of cyberattacks
In addition to quickly detecting an attack, professional and comprehensive countermeasures are critical to keeping damage low and preventing spread to additional network segments, geographic regions, plants, sites, and servers. For example, encryption can be detected frequently, but sometimes the alerts are not available (here an EDR/XDR or SIEM solution would be helpful), or the assessment of the incidents is not done correctly (internally or via an MDR or SOC service). When the attack is detected, a fast response is important to implement the restart quickly in parallel but also to do forensics to trace the attack (partly in cooperation with authorities, etc.).
Find the right IDR now with CyberCompare
An Incident Detection and Response (IDR) retainer is typically a contract with an incident response service provider and includes contractually assured support (also called a “retainer”) in the event of a cyberattack. This assures the customer of prioritised support in the event of an emergency and enables a faster response with the support of the experts – who already know the business and thus can quickly assist with containment (remote and on-site), forensics, and restart. The contract typically describes, in addition to an annual hourly volume (expandable in case of emergency), the corresponding service level agreements (SLA) for accessibility (usually a 24/7 hotline), start of remote support (e.g., after 4 hrs), and possible on-site deployment if so requested by the customer. In most cases, an agreement is also made that unused hours can be used for proactive services in the following year (e.g., assessments, penetration tests, training).
We keep you up-to-date with our whitepapers
Incident response retainers – a buyer’s guide