CSS2017 Session 7 SANS Training - Incident Handling Process
Вставка
- Опубліковано 26 лип 2024
- Session 7: SANS Session - Incident Response: 7 phases of IR - have a plan.
Speaker: Brian Ventura, Information Security Architect / SANS Instructor, City of Portland / SANS
Description: One of the most important phases of an Incident Response is having a plan. Let’s work through the scenario when something strange is happening on our network. What do we do? If we have established a plan of time, we will move to resolution much faster.
Brian Ventura, Information Security Architect and SANS instructor will discuss the phases of Incident Response in detail. Brian brings a wealth of experience in information security and will provide examples of how plans and solutions.
Intended Audience: Information Security Officers, Information Security practitioners, Information Technology practitioners
This video was filmed at the September 21, 2017 Cyber Security Symposium held in San Jose CA
If you would like information on any future PSP Forums, please visit our event site at www.pspinfo.us
Contact Information:
Russ Hicks, President
Public Sector Partners, Inc.
russ.hicks@pspinfo.us - Наука та технологія
great session and explanation of the IH process
honestly i could probobly pick apart any software that was created using my data by the simple fact that i know what to look for based on my experience with what i thought was a bad device later discovering that it was infact a sandbox bug
The city of Baltimore could learn a lot from you buh. LOL
11:35 If that is a extern ip, it's an event since they scan your app. However the ip activity should be observed and if the ip would be internal, the client computer needs to be investigated.
there should have been no one in my network meaning with my phone carrier because I only use my data with boost mobile. i do not use any router or any wifi, any issues detected need to be ceased and halted immediatley
megalovania
sans