Build crucial cyber security skills through interactive training during SANS Cyber Security Mountain 2021. Save $150 thru 6/30.


To attend this webcast, login to your SANS Account or create your Account.

Part 1: Incident Response - What Is (and Isn't) Working Today

  • Tuesday, August 18, 2015 at 1:00 PM EST (2015-08-18 17:00:00 UTC)
  • Russell Meyers, Javvad Malik, Barbara G. Kay, Alissa Torres


  • AlienVault
  • Arbor Networks
  • Carbon Black
  • Hewlett Packard
  • Mcafee LLC
  • Rapid7 Inc.

You can now attend the webcast using your mobile device!



Incident response is a hot topic among the SANS audience. In SANS' 2014 survey on Incident Response, only 9% of organizations felt their incident response process were "very effective," yet the majority of respondents operated under the assumption that they will be breached. This two-part webcast will focus on what is and isn't working for incident responders, what they can do about it, and how they can become more proactive in responding to incidents.

Part 1 of the webcast, on August 18, will provide:

  • A look at incident response expectations and the realities responders face
  • The state of incident response policies and practices
  • How those policies and practices have changed since the 2014 survey

Part 2 of the webcast, on Thursday August 20, will address how incident responders can be more proactive in their policies and practices.

Be among the first to receive the associated whitepaper written by Alissa Torres.

Survey results reveal an increasingly complex response landscape and the need for automation of processes and services to provide both visibility across systems and best avenues of remediation. Read this paper for coverage of these issues, along with best practices and sage advice.

Speaker Bios

Alissa Torres

Alissa Torres is a SANS analyst and certified SANS instructor specializing in advanced computer forensics and incident response (IR). She has extensive experience in information security in the government, academic and corporate environments. Alissa has served as an incident handler and as a digital forensic investigator on an internal security team. She has taught at the Defense Cyber Investigations Training Academy (DCITA), delivering IR and network basics to security professionals entering the forensics community. A GIAC Certified Forensic Analyst (GCFA), Alissa holds the GCFE, GPEN, CISSP, EnCE, CFCE, MCT and CTT+ certifications.

Barbara G. Kay

Barbara G. Kay focuses on the needs and opportunities for reinventing security operations and the Reveal(x) product line. Prior to ExtraHop, she led security operations market research and product marketing for McAfee and was responsible for their threat intelligence and analytics solutions, as well as the security information and event management (SIEM) platform. Before McAfee, her consultancy helped innovators including Cisco, Websense, Good Technologies and Netgear. She also served as director of security and privacy marketing for Sun Microsystems and led marketing for several startups. She holds a BA from Dartmouth College.

Javvad Malik

Javvad Malik - the man, the myth, the blogger- is a London-based IT security professional. Better known as an active blogger, event speaker and industry commentator, he is possibly best known as one of the industry's most prolific video bloggers with a signature fresh and light-hearted perspective on security. Prior to joining AlienVault as a security advocate, Javvad was a senior analyst with 451 Research, providing technology vendors, investors and end users with strategic advisory services, including competitive research and go-to-market positioning.

Russell Meyers

Russell Meyers is a global product line manager for HP TippingPoint Enterprise Security products focused on delivering solutions that address managing security intelligence, actionable network enforcement of security policy, network visibility and forensics. Russ has over 15 years in the systems management, networking and network security domains, with a decade of experience at TippingPoint and roots in the engineering and architecture organizations. Prior to his tenure at TippingPoint, Russ worked at Surgient Networks and IBM. He has an engineering and economics background along with a computer science degree from Purdue University.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.