Blog

  • Incident Response Preparation

    Incident Response Preparation Many of our customers question the best methodology out there to respond to an incident, and most places just need a push in the right direction to create an effective response to the incidents they see every day.  There are big data…

  • Essentials of Incident Response: 01. Preparation – Technology

    This blog series has been updated here. This is the last of a 3-part series on the role of Preparation in the Incident Response process. The first two parts covered People [1] and Process [2]; this part addresses the role of Technology in Preparation. Further…

  • Essentials of Incident Response: 01. Preparation – Process

    This blog series has been updated here. In this series on the Incident Response Process, I’m devoting at least one post to each of the steps in the PICERL (Preparation, Identification, Containment, Eradication, Remediation and Lessons Learned) method. Preparation is key to the others, so…

  • Essentials of Incident Response: 01. Preparation – People

    This blog series has been updated here. In the first post of this series, I gave an overview of the steps associated with the IR process. Starting with this post, I will cover each one in more depth, and identify topics for further development. If…

  • The Essentials of Incident Response

    According to a recent survey of incident responders by the SANS Institute (Torres, 2014), the lack of formal incident response (IR) plans and defined team structures is a primary roadblock to efficient handling of security incidents. In this series, I will discuss the components of…