Strategies of a world-class computer security incident response team
Posted on 21 March 2013.
Today’s Computer Security Incident Response Team (CSIRT) should have everything they need to mount a competent defense of the ever-changing IT enterprise: a vast array of sophisticated detection and prevention technologies, a virtual sea of cyber intelligence reporting, and access to an exploding workforce of talented IT professionals.

Yet, most CSIRTs continue to fall short in keeping the adversary - even the unsophisticated attacker - out of the enterprise. Why is this?

In this talk from Shmoocon 2013, Carson Zimmerman offers some observations on what it takes to do Computer Network Defense well in the modern IT enterprise. He presents ten fundamental qualities of an effective CSIRT that cut across elements of people, process, and technology.



Carson Zimmerman is a Lead Cyber Security Engineer with The MITRE Corporation. He has ten years of experience working with large Computer Security Incident Response Teams (CSIRTs) to better defend against the adversary.

Zimmerman has held roles in the CSIRT ranging from tier 1 analyst to senior architect. He received a BS in Computer Engineering from Purdue University in 2002 and an MS in Information Systems from George Mason University in 2007.





Spotlight

Almost 1 in 10 Android apps are now malware

Posted on 28 July 2014.  |  Cheetah Mobile Threat Research Labs analyzed trends in mobile viruses for Q1 and Q2 of 2014. Pulling 24.4 million sample files they found that 2.2 million files had viruses. This is a 153% increase from the number of infected files in 2013.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Mon, Jul 28th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //