
Security Weekly Podcast Network (Audio)
Preparation: The Less Shiny Side of Incident Response - Joe Gross - ESW #360
May 3, 2024
Expert Joe Gross emphasizes the importance of preparing for cyber incidents, breaking down tasks required for incident response. Discussion includes RSA news overload, Verizon's DBIR, and Mandiant’s M-Trends. Insights on incident response foundations, threat detection, and engaging training scenarios. Exploring investments in cybersecurity technologies and financial dynamics in tech industries. Unique discussions on DM funding, ARK browser features, and Nord Security's product launch. Cloud security enhancement with AWS resource tagging and insight into cybersecurity trends and cloud threat models.
01:57:07
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Regular training and tabletop exercises are crucial for effective incident response planning.
- Island's success demonstrates market acceptance of secure browsing solutions in cybersecurity.
Deep dives
Greylog Discusses Incident Response Preparedness and Security Trends
Incident response expert Joe Gross shares valuable insights on the importance of consistent training and tabletop exercises for effective IR planning. He emphasizes the need for organizations to structure tabletop scenarios realistically and involve key stakeholders such as legal and PR teams. Gross highlights the significance of practicing incident response regularly, advising quarterly full-day exercises for mature teams and more frequent sessions for beginners. He underscores the importance of augmenting IR staff to prevent burnout during prolonged incidents and emphasizes the value of feeding, resting, and rotating team members for optimal performance.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.