This is the interactive agenda for Suits and Spooks Washington D.C. 2015. This a draft a agenda and subject to change. Online registration is available here.
Wednesday, February 4 • 4:30pm - 4:55pm
Security Operations: Moving to a Narrative-Driven Model

Sign up or log in to save this to your schedule and see who's attending!

The current security operations model is an alert-driven one.  Alerts contain a snapshot of a moment in time and lack important context, making it difficult to qualify the true nature of an alert in a reasonable amount of time.  This clouds the information security picture and inhibits organizations from attaining full awareness of the threat landscape they face.  On the other hand, narratives provide a more complete picture of what occurred and tell the story of what unfolded over a period of time.  Ultimately, only the narrative provides the required context and detail to allow an organization to make an educated decision regarding whether or not incident response is required, and if so, at what level.  This talk presents the Narrative-Driven Model for incident response.

avatar for Josh Goldfarb

Josh Goldfarb

Chief Security Strategist, Enterprise Forensics Group, FireEye
Josh (Twitter: @ananalytical) is an experienced cyber security analyst with over a decade of experience building, operating, and running Security Operations Centers (SOCs). Josh currently serves as the Chief Security Strategist of the Enterprise Forensics Group at FireEye. Until its... Read More →

Wednesday February 4, 2015 4:30pm - 4:55pm
Main Track