Practical Insights on Incident Response (with Brian Weidner & Chris Skinner) | State of Security
Summary In this conversation, Geoff Hancock interviews Brian Weidner and Chris Skinner about incident response. They discuss the importance of building strong relationships with the C-suite and legal department, as well as the value of having a trusted incident response company on retainer. They also touch on the challenges of incident response in the critical infrastructure sector and the potential impact of new reporting requirements proposed by DHS. The conversation explores the recently released NIST incident response document and the need for organizations to tailor their incident response plans to their specific needs. The guests emphasize the importance of preparation, communication, and continuous improvement in incident response. Takeaways -Building strong relationships with the C-suite and legal department is crucial for effective incident response. -Having a trusted incident response company on retainer can streamline the response process. -New reporting requirements proposed by DHS may add additional burden to organizations already dealing with regulatory reporting. -The recently released NIST incident response document provides valuable guidance for organizations, but it should be tailored to each organization's specific needs. -Preparation, communication, and continuous improvement are key elements of successful incident response. Chapters 00:00 Introduction 19:45 Challenges in Incident Response for Critical Infrastructure 32:03 Navigating New Reporting Requirements 39:20 The Importance of Preparation, Communication, and Continuous Improvement