Avatar

Gavin Reid

CyberCzar/Director

Public Sector

With over 25 years of experience in the field, Gavin Reid is an expert in cyber threat intelligence. Reid has created numerous threat intelligence programs over the years including Cisco’s Security Incident Response Team (CSIRT), which is a global network of information security professionals responsible for monitoring, investigating, and responding to cyber security incidents.

Articles

May 3, 2013

SECURITY

Security Logging in an Enterprise, Part 1 of 2

Logging is probably both one of the most useful and least used of all security forensic capabilities. In large enterprises many security teams rely on their IT counterparts to do the logging and then turn to the IT logging infra when they need log information. That in itself isn’t bad; however, the needs/requirements for IT may not be a 100% fit for a CIRT. Read on to find out how we handled it.

March 22, 2013

SECURITY

Cisco Hosting Amsterdam 2013 FIRST Technical Colloquium

There is still time to register for the upcoming FIRST Technical Colloquium April 2-3 2013. The event has a very exciting program covering, bitsquatting, webthreats, RPZ, Passive DNS, Real-world monitoring examples, Spamhaus, SIE, Cuckoo Sandbox, Malware Analysis and many more current issues facing the incident response community. The event’s line-up includes notables from Cisco Security Intelligence Operations (SIO), […]