Needs of a Modern Incident Response Program

  • Wednesday, 11 Jun 2014 1:00PM EDT (11 Jun 2014 17:00 UTC)
  • Speakers: Tom Cross, Brandon Tansey

Recent high-profile data breaches highlight a dire need for improved incident response. Despite this fact, a recent survey indicated that typically, less than 10 percent of organizations' security budgets are used for incident response activities.

So how do we beef up incident response? Today's CSIRT must leverage skilled professionals, documented processes and network analysis tools that enable it to continuously and relentlessly hunt for and thwart advanced attackers.

Join Lancope and SANS to learn:

  • What your CSIRT should look like
  • Which processes, policies and best practices can be implemented to maximize its success
  • The tools required for your CSIRT to collect, analyze and act on valuable security data already available on your network