May 24, 2023

Incident Response Readiness with Paula Januszkiewicz

Listen Later

38 minutes

Is your organization ready to respond to a security incident? Richard talks to Paula Januszkiewicz about her experience helping organizations respond effectively when a security incident occurs. Paula talks about detection - attackers often have breached your infrastructure months before their attacks become visible. Once you've detected a potential breach, the next steps are to determine where the breach comes from, or as Paula says, who is patient zero? And what are the indicators of compromise? It's not enough to slam the door shut on an attack - how do you keep it from happening again? The conversation explores the idea of threat hunting, of understanding what the black hats are doing by being able to respond effectively to isolate exploited machines but not necessarily shut them down. An attack is an opportunity - seize it!
Links:

Cqure
Attack Surface Reduction Rules
Local Administrator Password Solution
Security Information and Event Management
Azure Sentinel

Recorded April 4, 2023

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

RunAs Radio

By Richard Campbell

4.6

8282 ratings

May 24, 2023

Incident Response Readiness with Paula Januszkiewicz

Listen Later

38 minutes

Is your organization ready to respond to a security incident? Richard talks to Paula Januszkiewicz about her experience helping organizations respond effectively when a security incident occurs. Paula talks about detection - attackers often have breached your infrastructure months before their attacks become visible. Once you've detected a potential breach, the next steps are to determine where the breach comes from, or as Paula says, who is patient zero? And what are the indicators of compromise? It's not enough to slam the door shut on an attack - how do you keep it from happening again? The conversation explores the idea of threat hunting, of understanding what the black hats are doing by being able to respond effectively to isolate exploited machines but not necessarily shut them down. An attack is an opportunity - seize it!
Links:

Cqure
Attack Surface Reduction Rules
Local Administrator Password Solution
Security Information and Event Management
Azure Sentinel

Recorded April 4, 2023

...more

More shows like RunAs Radio

Software Engineering Radio - the podcast for professional software developers by team@se-radio.net (SE-Radio Team)

Software Engineering Radio - the podcast for professional software developers

272 Listeners

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

382 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

38 Listeners

The Changelog: Software Development, Open Source by Changelog Media

The Changelog: Software Development, Open Source

289 Listeners

This Week in Tech (Audio) by TWiT

This Week in Tech (Audio)

3,062 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,005 Listeners

MacBreak Weekly (Audio) by TWiT

MacBreak Weekly (Audio)

2,014 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

886 Listeners

Tech News Weekly (Audio) by TWiT

Tech News Weekly (Audio)

1,074 Listeners

Intelligent Machines (Audio) by TWiT

Intelligent Machines (Audio)

781 Listeners

The a16z Show by Andreessen Horowitz

The a16z Show

1,100 Listeners

Daily Tech News Show by Tom Merritt

Daily Tech News Show

1,390 Listeners

Smashing Security by Graham Cluley

Smashing Security

322 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

243 Listeners

The Stack Overflow Podcast by The Stack Overflow Podcast

The Stack Overflow Podcast

64 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

97 Listeners