Intelligence & Analytics October 8, 2018 Does Your SOC Have a Security Playbook? 5 min read - By creating, regularly reviewing and maintaining a security playbook, SOC leaders can position analysts to execute incident response processes more quickly and effectively.
Threat Intelligence August 22, 2018 What’s In a (Threat Intelligence) Name? 8 min read - A lot of things in the threat intelligence world have multiple names, and these aliases often complicate the process of researching and dealing with security threats.
Data Protection July 30, 2018 How to Achieve Ransomware Recovery — Without Paying Ransom 3 min read - Ransomware recovery can be costly for companies with no defense strategy in place. Here's what your organization can do to protect itself from these ever-evolving threats.
Incident Response April 23, 2018 How to Choose the Right Malware Classification Scheme to Improve Incident Response 6 min read - Analysts can improve and automate their incident response processes by adopting the right malware classification scheme according to specific threat management goals.
Intelligence & Analytics August 16, 2017 Not Enough Hours in the Day? Respond Faster With Automated, Intelligent Security Analytics 3 min read - An automated security analytics platform can help understaffed security teams sift through threat data more efficiently and focus on more critical tasks.
Incident Response November 23, 2015 The Importance of Having an Effective Incident Response Team 2 min read - Having an incident response team can drastically improve the reaction to a security event, but businesses have to invest in the right areas.
Malware April 13, 2015 Security Excellence: How an IBM Threat Response Team Took On the Waski Virus 2 min read - While it's important to have high-quality technology in place, threat response teams can have a dramatic effect on the outcome of a security incident.
Security Services September 23, 2014 How Should an Organization and MSSP Coordinate Incident Response? 3 min read - Managed security service providers (MSSPs) monitor and identify potentially serious security events for organizations' incident response programs.