What new and continuing threats are responders uncovering in investigations, and how are they dealing with those threats? This webcast will release results from the SANS 2018 Incident Response Survey, developed by Matt Bromiley, SANS Digital Forensics and Incident Response (IR) instructor and GIAC board member. Matt will examine how incident response teams are coping with organizational structures, resources and IR implementation in an ever-changing threat environment.
In this webcast, you will learn how organizations have structured their incident response functions, what systems they are conducting investigations on, the threats they are uncovering and how they're uncovering them. For example:
- What staffing, services and resources are they using, and how are they using them?
- Are they still struggling with a silo mentality between operations and response?
- During an investigation, are they able to get the data they need to fully discover the attack's spread and remediate all traces?
- How automated are these processes of data collection and discovery?