Heightened emotions, demands for updates, not knowing how bad things might be...
Incident response isn't easy, but practice and the right tools can make it a whole lot less stressful. Some regulations like PCI require annual IR tests, but is that enough? Imagine playing a sport where the team meets for one half-hearted practice once a year. How would that team perform under pressure? How would they communicate?
Say this sports analogy has convinced you - the IR team should practice more and should practice effectively. Questions still remain - how often? Are tabletops enough, or are live exercises and simulations necessary? We'll aim to answer these questions and more during this interview with Tim and Paul from Tanium.
This segment is sponsored by Tanium. Visit https://securityweekly.com/tanium to learn more about them!
Paul Kelly is a IT Security and Operations technical expert and speaker with a focus on topics of Risk Management, Security Hygiene, Patching, Compliance, Converged Endpoint Management (XEM) and many other specialties. Paul has twenty two years of consultative experiences where he architected and deployed solutions to more than 10+ million endpoints globally, including end user compute and server platforms, critical infrastructure, investment banking platforms, Point of Sale systems, and Automatic Teller Machines.
Paul is the Global Director of Technical Solutions Engineering at Tanium and helps global customer realize the full potential of their Tanium investment.
Tim is a visionary leader and an IT and cyber security expert, with decades of experience across industries. He joined Tanium after retiring from Wells Fargo, where he was an SVP and led several teams in cyber operations, engineering, and research. He holds 25 US patents and has written many articles on cyber security topics. He is also a trusted source of insights and opinions for major publications and web shows, where he shares his knowledge and passion for the field.
Tim started his IT career as a developer and sysadmin in manufacturing, then moved to banking, where was a software packaging, scripting, active directory administration, and M&A projects. He has been dedicated to cybersecurity since 2009, specializing in areas such as detection and response, systems and patch management, vulnerability assessment, web-content filtering, malware analysis, red-teaming, and digital forensics.
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
