2020 - Incident Response - Benjamin Edelen

A methodology, based on the Incident Command System’s standardized response to emergency management, for organizing a team response to a hypothetical cyber security incident and leading that team through all response phases until the incident is resolved. I will engage with attendees as if they were part of the response team. My methodology is field tested repeatable by anyone who has been through an incident with me, and designed to scale up and dovetail with mega scale incident response. Attendees, particularly those new to incident handling or the Incident Command System, will leave the session confident that they could jump in as an incident handler at their organization without having to build the skills from scratch.