- June 2, 2014
- Posted by:
Members of Lancope’s research team will discuss how to build an effective CSIRT to fend off today’s advanced threats
ATLANTA – June 2, 2014 – Lancope, Inc., a leader in network visibility and security intelligence, will join The SANS Institute to deliver a complimentary webinar on effective cyber security incident response on Wednesday, June 11 at 1:00 p.m. U.S. Eastern time. Presented by Lancope’s director of security research, Tom Cross, and security researcher, Brandon Tansey, the webinar will discuss key components for building a computer security incident response team (CSIRT) that can continuously and relentlessly hunt for and thwart advanced attackers.
The recent onslaught of high-profile data breaches highlights a dire need for improved incident response. However, in a recent study conducted by the Ponemon Institute, half of all respondents said that less than 10 percent of their security budgets were used for incident response activities, and most said their incident response budgets had not increased in the past couple of years. The webinar will discuss why now is the time to strengthen incident response efforts, and exactly how organizations should go about building strong security teams, processes and technology infrastructures to more confidently combat today’s sophisticated adversaries.
“The term incident response doesn’t fully capture what is happening today,” said Cross. “Organizations need to adopt a ‘continuous response’ footing, in which the hunt for compromises becomes a business process that they engage in every day. Attackers are able to evade preventative security measures that most organizations have in place, so if you’re not aware of a compromise at the moment, you have to ask yourself if that really means that you aren’t compromised, or if it just means that you lack sufficient insight into what is happening in your network.”
Join Lancope and SANS to learn:
- What your CSIRT should look like
- Which processes, policies and best practices can be implemented to maximize its success
- The tools required for your CSIRT to collect, analyze and act on valuable security data already available on your network
Lancope’s StealthWatch® System collects and analyzes NetFlow and other types of flow data from existing infrastructure to provide in-depth visibility into network activity and potential attacks. This intelligence can be leveraged both historically and in real time to enable continuous response and significantly bolster network forensics capabilities.
To register for the complimentary webinar, go to: http://www.lancope.com/company-overview/webinar/needs-of-incident-response-program/. Click here for further details on Lancope technology for continuous response.
Lancope, Inc. is a leading provider of network visibility and security intelligence to defend enterprises against today’s top threats. By collecting and analyzing NetFlow, IPFIX and other types of flow data, Lancope’s StealthWatch® System helps organizations quickly detect a wide range of attacks from APTs and DDoS to zero-day malware and insider threats. Through pervasive insight across distributed networks, including mobile, identity and application awareness, Lancope accelerates incident response, improves forensic investigations and reduces enterprise risk. Lancope’s security capabilities are continuously enhanced with threat intelligence from the StealthWatch Labs research team. For more information, visit www.lancope.com.