Events & WebinarsSecurity operations
Joe Moles Michael Haag Tim Collyer Bob Argenbright

Break through the noise: take control of your incident response program

 

Enhance your cybersecurity incident response program.

Every day you’re receiving alerts from your security tools. How are you prioritizing and assigning which event to investigate first? Do you have a process to tune your detection? What metrics are you using to track your team’s effectiveness?

These are the questions that great IR programs answer. Regardless of the size of your team or organization, it is essential to put a system in place to surface what matters most, assign responsibility for analysis, and tune detection to save your team time without sacrificing accuracy.

Hear from experts who have led response operations at OfficeMax, Motorola, and Heroku and learn:

  • How to prioritize alerts across your toolset
  • A system to continuously tune and improve alert quality
  • Key metrics to track to measure your response efforts
 
Intelligence Insights: October 2021
 
The Red Canary Crash Course on Defender for Endpoint
 
Better know a data source: Process command line
 
Intelligence Insights: September 2021