1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Organizations should focus data sharing post-incident, not attribution

Discussion in 'Network World' started by RSS, Aug 4, 2015.

  1. RSS

    RSS New Member Member

    LAS VEGAS - There have been several notable security incidents in the news this year, from healthcare and retail breaches, to financial; even security firms themselves have been targeted.

    In each instance, attribution seems to take the lead during incident response, something organizations should resist. The key is collecting the right information and passing it on to the right people. When it comes to figuring out who did it and where they are, authorities are the ones who should take the lead – organizations that focus on this area first are wasting resources and time.

    MORE ON NETWORK WORLD: 26 crazy and scary things the TSA has found on travelers

    US Attorney Ed McAndrew (DE), who has years of experience working cases dealing with Internet-based crimes under his belt, recently spoke to CSO Online and offered some unique insight into the federal side of incident response and what organizations can to do better prepare for law enforcement involvement.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page