This service gives your organization access to expert cybersecurity responders who are ready to act in the event of a security incident. It covers everything from triage and containment to recovery, reporting, and post-incident recommendations.

Important: This is not a general cybersecurity monitoring plan. It is a monthly incident response service where your business commits to a set number of response hours each month, allowing us to stay on standby with secure access and response processes in place.

The base rate of $120 per hour applies to Security Administrator time only. Compliance Engineers are billed at standard rates. The monthly commitment ensures we have pre-established access, protocols, and personnel in place to act quickly. It includes response planning, secure credential management, documentation templates, and guaranteed coordination in accordance with NetFire’s incident response procedures.

Unused time does not roll over. If an incident requires more time than your plan includes, additional hours can be added as needed.

---

• Fixed monthly commitment: Choose the number of incident response hours your team wants available each month.
• Discounted rate: Committed hours are billed at $120/hour for Security Administrator tasks. Other roles are billed at standard rates.
• Rapid access: Response is activated through a designated hotline or incident response email.
• Preloaded response workflows: Includes secure documentation, credential handoff, and incident handling procedures.
• Incident response services: Threat containment, forensic analysis, recovery support, and official reporting are included.
• US-based scope: Response is limited to U.S. systems unless otherwise agreed in writing.

---

1. Notify us via hotline or incident email when a potential incident occurs.
2. We perform initial triage and classify the incident.
3. Our team initiates response procedures including containment and forensic analysis.
4. Once contained, we assist with recovery and mitigation steps.
5. A post-incident report is provided with findings and remediation recommendations.

---

• Time is billed in 30-minute increments.
• Committed hours must be used within the same month.
• No refunds or rollovers for unused time.
• Additional time may be purchased through a new service order or quoted project.
• Customer must ensure access to systems, contacts, and relevant logs to support response.

---

Cybersecurity Roles

Labor Type	Rate	Description
Security Administrator	$180.00/hr	Handles threat containment, user lockdowns, forensic triage, and incident coordination.
Compliance Engineer	$220.00/hr	Focuses on audit trails, documentation, policy remediation, and post-incident compliance support.

• Investigate logs, alerts, and anomalies
• Assist with recovery and restoration of affected systems
• Document timelines and evidence for audits or legal follow-up
• Review policy gaps and recommend changes after incidents

---

Our standard business hours are Monday through Friday, 9:00 AM to 5:00 PM Eastern Time. Emergency work outside these hours is billed at 2X the standard rate unless scheduled in advance or covered by a higher-tier SLA.

---

To view the full breakdown of labor types, hourly rates, and service conditions, see our Fee Schedule.

This service provides your team with trusted, fast-moving support when a security event occurs. It ensures that the response is executed in line with best practices, minimizes downtime, and helps you recover cleanly and confidently.