The Need for Intelligence-Driven Incident Response

Logo
Presented by

Richard Conley, Director of Sales Engineering & Willy Leichter, VP of Marketing, Cyware

About this talk

Incident response is typically reactive, as analysts rush to identify ongoing security incidents, triage a barrage of alerts, enrich data with available threat intel, and communicate critical information to downstream stakeholders. The problem is that this process relies too much on manual processes and is far too slow in getting the right information to the right decision makers. While detection tools may be rapid, the end-to-end process of aggregating, prioritizing, disseminating, documenting, alerting, and finally taking action to stop attacks can take days to weeks to months to never… Join security experts from Cyware for a discussion of practical ways to improve incident response by incorporating threat intelligence and automation into your processes from the outset – rather than as an afterthought. An intelligence-driven process can help you proactively get ahead of threats, anticipate possible attacks, prepare detection rules in advance, address vulnerabilities and help your organization respond quickly and effectively when incidents occur. Combining this with effective orchestration, automation, and collaboration tools can dramatically reduce response time and improve outcomes. This discussion will include: • How to break through silos to connect people, technology, and data • The need to orchestrate security tools, cloud apps, and data sources • Ways to effectively consolidate, and prioritize threat and incident data • Connecting the dots across threats, incidents, tools, and teams • Automating alerts to stakeholders so they can make decisions quickly
Related topics:

More from this channel

Upcoming talks (7)
On-demand talks (897)
Subscribers (64046)
CSA CloudBytes was launched as a webinar series to help us educate the industry on all matters related to the cloud. Our channel is designed to inform our audience about trending topics, new technologies, and latest research. Learn more at cloudsecurityalliance.org. Join the Cloud Security Alliance on LinkedIn and follow us on twitter: @cloudsa