3:10 PM Adversary Oriented Security
In modern environments, the corporate security program utilizes an increasingly complex inter-relationship of people, processes, and technology in detection and response operations. However, incident response capabilities must be balanced against budgetary constraints and other requirements the security program must meet. How do you measure the effectiveness of your incident response program, and the investments your organization has made? What measure of confidence do you have in your organization’s ability to detect and respond to the worst of circumstances? These are not questions that can be answered by yet another technical solution, yet are critical in understanding how your organization is oriented against the adversary.
This discussion will include:
- Programs that can be utilized to measure the efficacy of the security and incident response technology, people and processes.
- Identifying deficiencies in enterprise adversary detection programs, and pursue continuous improvement in organization-wide detection capability.
- Methods to determining new investments to be made in incident response capabilities.