Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360
Security Weekly Podcast Network (Audio)
00:00
Threat Detection Preparation and Incident Response
The chapter delves into the importance of preparing for threat detection in incident response, highlighting the blend of technical and non-technical aspects such as setting up realistic scenarios using threat emulation tools and involving various teams beyond just the security team. It discusses the significance of transparent communication during a breach and the involvement of legal, PR, and decision-making in escalation, emphasizing the importance of building trust and relationships across the organization. The chapter also focuses on incident response training, tabletop exercises, and staff well-being considerations to ensure effective cybersecurity operations.
Transcript
Play full episode
