Adding Incident Response Containers To The Cyber Security Tool Belt

"In order to perform a successful investigation, you are going to need to have access to different tools in the environment." So says PayPal's Renana Friedlich. Beyond that, Renana suggests to ensure that you know the criteria that you are investigating- number of users impacted, regulatory risk to the company, etc." It's only at that point that an enterprise can consider an incident response container.

An incident response container must be aligned with company processes. Renana notes that it's "absolutely critical from a process perspective to have regular meetings with the provider to make sure that you really see things eye to eye."

Finally, define roles and responsiblities for the best possible relationship moving forward.  

Episode Overview

The Global Head of Cyber Security Operations for PayPal, Mrs. Renana Friedlich, appears on Episode #143 of Task Force 7 Radio to about one of the most important exercises in the Incident Response space: Incident Response Retainers. Friedlich unpacks the entire retainer engagement, including why companies get a retainer, what are the main benefits of having a retainer, what types of retainers are available, should a company sign more than one retainer, and what is the correlation between cyber security insurance and IR retainers? Frielich also spoke about whether or not retainers should be signed through the Information Security team or the Legal Department, what are some of the factors companies should be considering when choosing a provider, and what are common misalignment mistakes companies make when engaging Incident Response Services. Don't miss one of the most prolific Cyber Security Operations Professionals in the industry, Renana Friedlich on Ep. #143 of TF7 Radio.

Listen Now