In between firefighting the crisis of the week, we hope you have time to read the latest in my series on the path to using SIEM as the foundation for building an Incident Response team that adds value to the enterprise outside of crisis times. Once I started on this document series it become obvious that it wasn’t going to be something that could be summarized in a handful of short screeds. This is part 2, intended as an inspirational taster for how to leverage SIEM to drive a directed, (semi) predictable workflow for Incident Response work.
Get the latest security news in your inbox.Subscribe via Email No thanks. Close this now.