Events & WebinarsSecurity operations
Joe Moles Michael Haag Tim Collyer Bob Argenbright

Break through the noise: take control of your incident response program


Enhance your cybersecurity incident response program.

Every day you’re receiving alerts from your security tools. How are you prioritizing and assigning which event to investigate first? Do you have a process to tune your detection? What metrics are you using to track your team’s effectiveness?

These are the questions that great IR programs answer. Regardless of the size of your team or organization, it is essential to put a system in place to surface what matters most, assign responsibility for analysis, and tune detection to save your team time without sacrificing accuracy.

Hear from experts who have led response operations at OfficeMax, Motorola, and Heroku and learn:

  • How to prioritize alerts across your toolset
  • A system to continuously tune and improve alert quality
  • Key metrics to track to measure your response efforts
The why, what, and how of threat research
Yellow Cockatoo: Search engine redirects, in-memory remote access trojan, and more
Cover your bases: 5 common pitfalls that enable ransomware attacks
A Bazar start: How one hospital thwarted a Ryuk ransomware outbreak