Nickolas B. Savage
Associate Managing Director
Cyber and Data Resilience
Secaucus
Cyber Risk Retainer
Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.
Contact UsWhen faced with a cyber incident, your organization must be prepared to respond quickly and effectively to protect your operations, reputation and bottom line. Timely response and notification for cyber incidents is also mandated by many privacy and consumer protection laws. Prepare now with Kroll’s cyber risk retainer.
Kroll’s cyber risk retainer offers maximum flexibility with transparent pricing so you get tangible value for your retainer dollars and gain peace of mind knowing you can depend on Kroll’s prioritized response and global resources in a crisis.
Our cyber risk retainer adapts to and maximizes your existing security stack, so there's no need to buy new tech. You also have options to leverage a wide array of our end-to-end cyber risk solutions to strengthen your overall resiliency.
Customizable Incident Response Retainer
Kroll knows that for clients, the prospect of preparing for and dealing with a cyber incident is fraught with unknowns. That’s why we created a robust but flexible retainer to adapt to your business, while providing you with the comfort that Kroll’s team of forensic experts will respond to contain and remediate an incident. From preparedness services to breach response, Kroll’s cyber risk retainer services are configurable to your needs and environment regardless of the technologies you use.
A Kroll cyber risk retainer guarantees expedited response as well as notification and proactive services to minimize the impact of an incident. Our retainer options address the pressure organizations feel to maximize the value of cyber security investments with upfront pricing and service structure.
How Flexible is the Cyber Risk Retainer?
Unlike most providers, you can customize retainer packages to include a wide range of services:
Vendors | Digital Forensics | Incident Response | Breach Notification | Testing & Assessments | Tabletop Exercises | Litigation Support |
|---|---|---|---|---|---|---|
Kroll |  | | | | | |
Others |  |  |  |  |  |  |
Client Testimonials
 | “As a Cyber Risk Retainer client, we have appreciated Kroll’s expedited response for potentially critical issues. Their subject matter expertise allowed us to contain a situation prior to it developing into a significant issue.” – Option Care Health |
 | “Kroll's Cyber Risk Retainer program gave us the flexibility to utilize our retainer credits to help us accomplish some of our IT security goals during the year, while having the peace of mind that we had a Tier 1 partner to quickly respond if we had some type of cyber incident.” – Netscout Systems, Inc |
Incident Response Retainer Service Features
- Prompt access to an elite, global team of 700+ incident response and breach notification experts
- Rapid response service levels to provide peace of mind in the event of an emergency
- Robust preparedness services, including tabletops, simulations, risk assessments, penetration testing, policy reviews and strategic advisory
- Flexibility to choose from a wide range of cyber services
- Ability to roll over a percentage of unused credits
- No minimum hourly usage requirements or lead times
- Technology-agnostic services can be catered to your specific security stack
- Rate discounts for hourly cyber security services offered by Kroll
- Compatible with over 85+ cyber insurance carriers under pre-negotiated rates
In addition, cyber insurance plays an integral role in mature cyber security programs. Kroll is an approved vendor for over 50 cyber insurance carriers worldwide, with a dedicated insurance team that can help handle claims efficiently.
Choose the Incident Response Retainer Option That Fits Your Organization’s Posture and Need
Premier | Plus | |
|---|---|---|
Response Time Service Levels | Incident support contact within two hours (24/7/365) | Incident support contact within four hours (24/7/365) |
Service Credits Application | 100% of retainer credits can be applied towards any cyber risk consulting service | |
Rollover Credits | Up to 20% of unused services credit may be applied to the following year upon renewal | |
Rate Discount | 15% discount on any additional hourly-based proactive or incident response cyber risk service | 10% discount on any additional hourly-based proactive or incident response cyber risk service |
Peace of Mind and Expert Support Just a Call Away
Kroll manages over 3,000 cyber investigations every year for clients of all sizes and complexities. We also have decades of experience helping clients notify customers affected by breaches. We can help you determine the right cyber risk retainer for you, beyond incident response. For peace of mind and support before and during an incident, speak with one of our cyber experts today.
Talk to a Cyber Expert
Kroll is ready to help, 24x7. Use the links on this page to explore our services further or speak to a Kroll expert today via our 24x7 cyber hotlines or our contact page.
The State of Cyber Defense: Manufacturing Cyber Resilience
The State of Cyber Defense: Manufacturing Cyber Resilience
Our State of Cyber Defence in Manufacturing report provides a holistic cybersecurity overview of the manufacturing sector, including insights from threat intelligence, data breach statistics, offensive security considerations and insight into the maturity of manufacturing organizations’ cybersecurity programs.
Get your copy for more insights.
Frequently Asked Questions
Data Collection and Preservation
Improve investigations and reduce your potential for litigation and fines with the strict chain-of-custody protocol our experts follow at every stage of the data collection process.
Computer Forensics
Kroll's computer forensics experts ensure that no digital evidence is overlooked and assist at any stage of an investigation or litigation, regardless of the number or location of data sources.
24x7 Incident Response
Kroll is the largest global IR provider with experienced responders who can handle the entire security incident lifecycle.
Office 365 Security, Forensics and Incident Response
Digital forensic experts investigate hundreds of Office 365 incidents per year and help strengthen your security.
Malware Analysis and Reverse Engineering
Kroll’s Malware Analysis and Reverse Engineering team draws from decades of private and public-sector experience, across all industries, to deliver actionable findings through in-depth technical analysis of benign and malicious code.
Malware and Advanced Persistent Threat Detection
Our expertise allows us to identify and analyze the scope and intent of advanced persistent threats to launch a targeted and effective response.
Business Email Compromise (BEC) Response and Investigation
In a business email compromise (BEC) attack, fast and decisive response can make a tremendous difference in limiting financial, reputational and litigation risk. With decades of experience investigating BEC scams across a variety of platforms and proprietary forensic tools, Kroll is your ultimate BEC response partner.
Digital Forensics Services
In the event of a security incident, Kroll’s digital forensics investigators can expertly help investigate and preserve data to help provide evidence and ensure business continuity.
Mobile Device Forensics
With a global mobile device forensics team and a proven track record in investigation and litigation support, Kroll enables key digital insights to be accessed quickly and securely.
Enabling an Investor Services Firm to Prepare for DORA Compliance
Cyber Governance and Strategy
Enabling an Investor Services Firm to Prepare for DORA Compliance
March 11, 2025
Threat Intelligence
Q4 2024 Cyber Threat Landscape: Gone Phishing. Evolving Techniques Keep Organizations on the Hook
February 26, 2025
by George Glass, Keith Wojcieszek
Threat Intelligence
January Threat Intelligence Spotlight Report
February 25, 2025
by George Glass, Keith Wojcieszek
Cyber
Cyber Threat Hunting Explained: Advanced Techniques, Tools, and Intelligence
December 2, 2024
by Scott Hanson, George Glass
Kroll Appoints Katherine Keefe to Lead Global Cyber Insurance Industry Capabilities
Press Release
Kroll Appoints Katherine Keefe to Lead Global Cyber Insurance Industry Capabilities
October 18, 2024
Press Release
Kroll Becomes Relativity Gold Provider Partner
September 19, 2024
Kroll in News
Kroll Recognized in 2024 Gartner Market Guide for Digital Forensics and Incident Response Retainer Services for the Fifth Consecutive Year
September 12, 2024
Press Release
Kroll Expands AI Risk Consulting Services
August 27, 2024
Join Kroll at CLOC 2025 in Las Vegas
Cyber
Join Kroll at CLOC 2025 in Las Vegas
May 5 - 8, 2025|Conference
Visit Booth 523 for one-on-one insights on advancing your legal operations through industry-leading transformational programs.
Cyber
Webinar - How to Adopt DORA’s Threat Led Penetration Testing Requirements
April 22, 2025|Online
Cyber
Kroll at RSAC 2025 Conference
April 28 - May 1, 2025|Conference
Join Kroll experts at RSAC 2025 in San Francisco. Stop by booth 842 in the South Expo Hall to meet our team.
Threat Intelligence
Kroll at Infosecurity Europe 2025
June 3 - 5, 2025|Conference
Join our Cyber and Data Resilience experts at Infosecurity Europe in London, June 3–5. Stop by stand D45 to meet our team.
Kroll is headquartered in New York with offices around the world.
One World Trade Center
285 Fulton Street, 31st Floor
New York NY 10007
Sign up to receive periodic news, reports, and invitations from Kroll.
Our privacy policy describes how your data will be processed.
© 2025 Kroll, LLC. All rights reserved.
Kroll is not affiliated with Kroll Bond Rating Agency,
Kroll OnTrack Inc. or their affiliated businesses. Read more.