《剧本强化.pdf》由会员分享,可在线阅读,更多相关《剧本强化.pdf(35页珍藏版)》请在三个皮匠报告上搜索。
1、July 24,2025Jessica GormanCybersecurity Risk Management Program,Georgetown UniversitySr Director of Security Operations and Incident Response,ExperianPlaybook Powerup:Applying Modular Design to Maintain IR Playbooks at ScaleGoal:Empower you to streamline incident response playbook management through
2、 real-world application of modular design conceptsAgendaBackgroundChallengesModular DesignApplicationBenefits&Wrap UpToday:-Background of IR Playbooks-Challenges in Updating/Change Management-Modular Design in Playbooks-Application and Examples-Benefits-Wrap UpIncident response playbooks are a corne
3、rstone of a robust programPlaybooks define processes for appropriate response based on a specific threat scenario2 In use by 70%of security professionals1 Depicted as text-based narratives or process flow diagrams2 Security Orchestration,Automation,and Response(SOAR)technology Organizations may main
4、tain dozens,even 100+BackgroundChallengesModular DesignApplicationBenefits&Wrap UpUp-to-date playbooks promote effective incident response effortsUp-to-date playbooks can:Help meet compliance/regulatory requirements3 Decrease attacker dwell time,limiting potential financial costs4,5,6 Guide less-exp
5、erienced analysts7BackgroundChallengesModular DesignApplicationBenefits&Wrap UpHowever,maintaining updated playbooks is challenging for organizations52%of security professionals say IR playbooks are rarely updated and/or not updated“frequently enough to capture and incorporate best practices”1Backgr
6、oundChallengesModular DesignApplicationBenefits&Wrap UpHowever,maintaining updated playbooks is challenging for organizations52%of security professionals say IR playbooks are rarely updated and/or not updated“frequently enough to capture and incorporate best practices”1Resource constraints on securi