Putting the “R” in the NDR – John Smith – ESW #241
It's time to think more broadly about the R in NDR. Incident responders need a full spectrum of response–from hunting and investigations to remediation–not just another alert cannon. While blocking and containment are important steps, complete incident response is about gathering forensic evidence, sharing it across teams to establish root cause, pulling together an actionable plan, and eradicating the risk or vulnerability from the organization’s environment. ExtraHop's Principal Engineer John Smith joins Security Weekly to discuss.
Segment Resources:
ExtraHop Extends Response and Forensics Capabilities with Deep Threat Insights for Hybrid Cloud https://www.extrahop.com/company/press-releases/2021/revealx-360-innovations/?uniqueid=FJ07532845&utmsource=security-weekly&utmmedium=podcast&utmcampaign=2021-q3-security-weekly-pr-resource&utmcontent=press-release&utmterm=no-term&utmregion=global&utmproduct=security&utmfunnelstage=top&utm_version=no-version
ExtraHop free and interactive demo https://www.extrahop.com/demo/?uniqueid=AN07532846&utmsource=security-weekly&utmmedium=podcast&utmcampaign=2021-q3-security-weekly-demo&utmcontent=demo&utmterm=no-term&utmregion=global&utmproduct=security&utmfunnelstage=top&utm_version=no-version
This segment is sponsored by ExtraHop Networks.
Visit https://securityweekly.com/extrahop to learn more about them!
Announcements
In an overabundance of caution, we have decided to flip this year’s SW Unlocked to a virtual format. The safety of our listeners and hosts is our number one priority. We will miss seeing you all in person, but we hope you can still join us at Security Weekly Unlocked Virtual! The event will now take place on Thursday, Dec 16 from 9am-6pm ET. You can still register for free at https://securityweekly.com/unlocked.
Guest
John Smith has over twenty years’ experience in IT and Security, including eighteen years as a practitioner before joining ExtraHop. John is a frequent speaker on podcasts and webinars, and has delivered talks at conferences like RSAC and multiple B-Sides events. His experience includes securing and architecting the US Centers for Disease Control’s Pandemic Response and Telework solution in 2007 and pioneering data-driven analytics and investigations.