Presented at
Diana Initiative 2019,
Aug. 10, 2019, 5 p.m.
(60 minutes).
While so much in the threat landscape is changing, why have our Incident Response processes have stayed the same? They have not adapted to the latest threats, which can put organizations at risk. This talk will present conclusions from doctoral research on the implementation of double-loop learning as a way to improve the incident response process. The presentation discusses the success of incorporating learning loops into IR cycles. Incident response is traditionally taught as a single loop learning cycle, but research shows double-loop learning can help limit or mitigate the extent of new issues and includes constant learning at each phase.
Presenters:
-
Margaret Layton
- Director of Engineering at Symantec
Dr. Margaret Layton (Meg) is currently Director of Engineering for the Cyber Security Services organization of Symantec and has been working in technology for over two decades. In 2001, she joined a start-up company that was acquired by Symantec, and she has since been working in various roles within the company - both on products and working on the intelligence that fuels the front-line responders. Prior to joining Symantec, Meg worked as a Director of IT for a telecommunications company doing business in Africa, which is where she first discovered her passion for security. There is nothing like protecting networks in developing countries in the middle of a civil war to really drive forward what security needs. Meg maintains several certifications in the Cyber Security realm that she is passionate about, including both the CISSP and CSSLP certifications from ISC(2), and GIAC certifications for Incident Handling, Forensic Analysis, and Penetration Testing. She is CNSS 4011 and 4012 certified. In her role as Director of Engineering, she also holds Agile certifications.
Links:
Similar Presentations: