Group-IB

About Group-IB

Group-IB is Russia and the CIS’s (Commonwealth of Independent States) leading computer security company, specializing in the investigation of computer crime, information security breaches, and computer forensics.

On the basis of Group-IB, CERT-GIB operates as the first private computer emergency response team in Russia. CERT-GIB provides the client with comprehensive support in minimizing informational risks, consisting of technical, organizational, and legal advice.

Group-IB is the only company working in information security 24/7.

Group-IB structure

Group-IB consists of 5 departments:

  • Investigations department
  • Computer forensics and data recovery lab
  • Legal department
  • Integration and Post Incident consulting department
  • Internal Security department

Investigations Department

The investigations department consists of three groups:  the investigations, analytic and monitoring and immediate response groups.  The department’s specialists operate 24/7 and are able to provide immediate incident response, including real-time monitoring, investigation and collection of forensic evidence. The department interacts with response teams in 48 countries. The incident database that we have collected since 2003 is a unique information repository in the CIS and Eastern Europe. The department’s specialists possess outstanding expertise and the most innovative technical equipment and software.  The staff has frequently been engaged by law enforcement agencies as experts in difficult cases.

Services provided by the department:

Computer forensics and Data Recovery Lab

The computer forensics and data recovery lab provides expertise in information technology and computer forensics, as well as data recovery from various media.  The laboratory conducts research and examination of physical evidence stored on various media and is involved in many civil, arbitration and criminal cases under investigation in the territory of the Russian Federation. Group-IB specialists analyze the crime evidence provided in electronic format and, based on their conclusions, assemble the evidentiary basis for an investigation.

Legal Department

The legal department provides a full range of legal services including computer crime investigation support, the construction of evidence databases, and assistance in criminal proceedings by law enforcement institutions, operational investigation units and courts.

Integration and Post Incident Consulting Department

The Integration and Post Incident consulting department provides the following services:

  • Develop incident response plans
  • Provide instructions on computer crime investigations and computer forensics
  • Implement information security monitoring systems (e.g. IDS, IPS, HoneyPots)
  • Conduct stress and penetration testing
  • Implement incident control systems, installing software and other means of information technical protection

Internal Security department

The Internal Security department ensures that our company’s employees comply with Russian laws and the professional ethics codes.  The department collaborates with key security agencies and law enforcement authorities of the Russian Federation.

Group-IB’s goals as a company are:

  • Provide stable and long-term growth to facilitate the development of new technologies, practices and techniques in the field of computer crime response
  • Become the leader in the field of computer crime investigation in Russia, the CIS countries and throughout the world
  • Develop innovative approaches to incident investigation and evidence collection through the use of advanced technologies
  • Participate in trial proceedings
  • Expand the influence of Russian computer crime experts and develop ways to interact with the world community

Group-IB became a member of the Leta Group in 2010.