Name
E5. Instructive Failure: Practical Use of Incident Data
Date & Time
Thursday, May 11, 2017, 10:10 AM - 11:10 AM
Speakers
Description
Session Description:
All incidents are a failure at some level and learning from failure is vital. Incident data isn't a new, shiny, or sexy concept but is critically integral to a capable IR/security program. Look beyond simply recording of incidents and consider your Incident Data a source of truth that supports decision-based security through meaningful metrics, risk, and even threat intel applications.
Location Name
Room 610/612
Full Address
Colorado Convention Center
700 14th Street
Denver, CO 80202
United States
700 14th Street
Denver, CO 80202
United States
Category
Incident Response
Learner Objectives
After completing this session, the learner will understand:
- Forming questions you want answered
- Collecting the right data
- Leveraging the data and metrics
- Additional context and enrichment
Speaker Bio(s)
Matt is an inforsec professional with more than 17 years of information security/technology experience. Currently, he works for a privately owned global company as a Senior Malware & Threat Intel analyst, and operates a small infosec consultancy. He specializes in Incident Response, Digital & Network forensics, with added experience in Malware Analysis, and Threat Intel.
Matt Brown is a Threat Intelligence Analyst for a global company. He has over 20 years of experience in the Intelligence/Information Technology community. His specializes in data analysis, intelligence analysis, history and making Incident Response dislike him.
Sorting Order
2