The attackers move fast, and with MANDIANT technology and knowledge, so will your responders. Many organizations impacted by the APT “define a win” by the operational tempo the responders can maintain. Using MANDIANT solutions, your organization will be capable of drastically increasing the speed, efficiency, and effectiveness of your responders. The figure below shows how MANDIANT technology and services reduced the manpower and time required for a large international defense contractor with over 100,000 hosts to perform essential response tasks:
| Activity |
Completed Without MANDIANT Services and Technology
|
Completed With MANDIANT Services and Technology |
| Adopt new signature of compromise | Not performed | Under 4 hours |
| Live data collection from compromised hosts | 2 days using local resources and batch scipts | 30 minutes using central experts and MIR |
| Disk duplication | 3 days on-site preservation | 1 day using MIR |
| System analysis | 3-5 days | Under 1 day |
| Identify remedial steps | 3 weeks | 3 days |