Incident Response and Network Forensics: Avoiding Common IR Errors
Time 04/23/08 03:00PM-04:00PM
Whether originating from DDoS attacks, malicious code, unauthorized access, or inappropriate usage, incidents impacting computer security policies are steadily increasing in frequency and risk. IT and security professionals need a highly effective counterattack plan to defuse potential damage to the organization, and network forensics is fast becoming the critical link in incident response. With network forensics IT can preserve critical and contextual data surrounding a particular activity to more quickly and accurately address violations of security and use policies. This presentation is designed to help IT and security professionals avoid common incident response errors by leveraging network forensics best practices, policies and procedures. The discussion takes into account restoral versus forensics approaches to incident response; security, business and compliance trends; and current best practices to support incident response initiatives.
Speaker Harold Stonebraker FireEye
Secondary tracks System and Network Security for Advanced Networks