Cognitive Intelligence: Empowering Security Analysts, Defeating Polymorphic Malware
In psychology, the term “cognition” refers to a human function that is involved in gaining knowledge and intelligence. It helps describe how people process information and how the treatment...
Streamlining Threat Investigations with AMP Unity
Preventing malware incidents is very much like preventing bad things from happening in our day-to-day life. We all take precautions every day (well, most of us do, anyway). Actions as...
Putting the “Active” Back in Proactive Security: Tabletop Exercises
Security practitioners the impossible task of defending an ever-changing environment. Cisco Security Incident Response Services offers several proactive services to plan against new threats.
The Importance of Logs
It's funny how the world turns. I started off in security working for a bank. The model there was very much build it, break it, fix it with our Operational...
Top 5 Recommendations from Cisco Incident Response Engagements
In the course of an emergency response, our Incident Response (IR) team constantly makes tactical and strategic recommendations according to customer and environment needs. Here are the 5 top recommendations.
Incident Response and General Data Protection Regulation
This article will address provisions of the GDPR related to Incident Response (IR) planning. A proven IR plan will lend GDPR compliance and provide a framework for practical Incident Response.
The Power of Logging in Incident Response
A deep dive into logging as an often-overlooked but powerful tool for incident detection and response “Lack of instrumentation or insufficient logging” is often a phrase used on incident response...