Go Back

(ISC)2: Incident Response-Not a Drill: A Security Manager's Guide

Monday, September 12, 2016 1:45 PM - 3:00 PM
Location: W101B Incident Response
Education Level: Intermediate

With a data breach most certainly in your future, this session introduces an information security incident response program using a severity escalation methodology and the proper analysis techniques resulting in a scalable incident response program. As the security professional responsible for security incident response, if you do not have a well designed, formally documented incident response process in place that is understood by management and regularly tested, how do you plan to survive the data breach?

Learning Objectives
Categorize security incidents, allowing for proper actions based on the relationship between risk of harm and notification escalation requirements.

Apply the Risk of Harm decision tree analysis and incorporate it into the larger event response program.

Apply the eight steps in the incident response program cycle.


Jake Kouns
Risk Based Security