Your IR Team: More than Firemen and Maids

All organizations have incidents and most do some level of reporting around them. Unfortunately, such reports often have little analytical value and are soon forgotten. The investigative response (IR) program’s contribution to risk management is largely underutilized. IR should not only “put out the fires” and “clean up the mess” but inform and improve security management as well. This talk provides tips and examples on how to make that happen.