Once a breach is confirmed, several required tasks typically fall outside the entity’s sweet spot.  Several vendors claim to offer a vertically integrated, one-stop-shop solution, but they don’t really have one. They use third-party vendors who hide behind the façade of the integrated solution.  If you don’t know who is doing the work, you have no basis for deciding whether you would want to use that vendor.  This section highlights vendors who, through their documented business practices and/or history of exposing client data entrusted to them, have a history you should be aware of before deciding to employ their services.