Resources Webinars
Security operations
Joe Moles Michael Haag Tim Collyer Bob Argenbright

Break through the noise: take control of your incident response program


Enhance your cybersecurity incident response program.

Every day you’re receiving alerts from your security tools. How are you prioritizing and assigning which event to investigate first? Do you have a process to tune your detection? What metrics are you using to track your team’s effectiveness?

These are the questions that great IR programs answer. Regardless of the size of your team or organization, it is essential to put a system in place to surface what matters most, assign responsibility for analysis, and tune detection to save your team time without sacrificing accuracy.

Hear from experts who have led response operations at OfficeMax, Motorola, and Heroku and learn:

  • How to prioritize alerts across your toolset
  • A system to continuously tune and improve alert quality
  • Key metrics to track to measure your response efforts
ChromeLoader: a pushy malvertiser
Intelligence Insights: May 2022
The Goot cause: Detecting Gootloader and its follow-on activity
Marshmallows & Kerberoasting