Session Description:

“There are only two types of companies: those that have been hacked, and those that will be.” — Robert Mueller, former FBI Director. In today's digital landscape, the importance of incident response cannot be overstated. With the increasing frequency of cyber breaches, organizations must be prepared to handle incidents swiftly and effectively. This presentation will focus on the top areas to concentrate on when building your organization’s incident response capabilities. During this workshop, we will look at elements such as: 

• Developing an Incident Response Plan: Understanding the incident process and implementing a structured IR capability in your organization.
• Creating an Incident Response Playbook: Developing templates and playbooks to guide your team through various incident scenarios.
• Conducting Tabletop Exercises: Practicing your incident response plan through simulated scenarios to ensure readiness.
• Auditing IR Best Practices: How to evaluate and improve your incident response strategies and procedures.
• Digital Forensics: Using digital forensics to investigate an incident identify point of entry, lateral movement, compromised assets, malicious software, and data access/exfiltration.
• Forensic Investigation: Understanding what is occurring on your network through forensic analysis
• Implementing Good Forensics Controls and Practices: Establishing robust forensics procedures to ensure thorough investigations.
• Auditing Your Forensics Capability: Evaluating the effectiveness of your forensics practices and making necessary improvements.

This comprehensive approach will help you build a resilient incident response framework, ensuring your organization is prepared to handle any security breach effectively.

Speaker Profile:

Austin Creighton, Senior Cybersecurity Manager -  Raymond Chabot Grant Thornton

Austin is a Senior Manager in RCGT’s Cybersecurity Services practice with over ten years of cybersecurity consulting, assessment and engineering experience.

Austin is focused on information security risk management, specifically - implementing security standards and frameworks, developing secure architecture, and performing compliance assessments for many organizations across North America (i.e. NERC CIP, CSA N290.7-14, NIST CSF, etc.). Austin specializes in developing and implementing cybersecurity risk management frameworks that draw from well-known industry standards (NIST CSF, IRAM, CMMI, COSO ERM, etc.). Specifically focused on identifying and minimizing cybersecurity risks associated with the needs of the business that support strategic objectives. Industry specialized in security of and resilience of cyber-physical and ICS/OT systems having consulted with power utilities, water utilities, and mining companies in North America and globally. 

Stephanie M. Corvese, Senior Manager, Digital Forensics and Incident Response - Doane Grant Thornton LLP

Stephanie is a Senior Manager in the Digital Forensics and Incident Response team. She is responsible for leading our client cybersecurity incident response investigations, the training, management, and oversite of our national DFIR practice and Toronto lab, as well as management of our national incident response hotline.

She is a GIAC Certified Forensic Examiner with a strong background in computers and consumer electronic devices, digital forensics analysis, and incident management; and has been the forensic lead on over 600 incident response investigations ranging from small/medium size businesses up to enterprise level in a wide range of industries including finance, real estate, manufacturing, the oil and gas, banking, federal and municipal governments and mining and utilities.

The DFIR team relies on Stephanie’s experience in cybersecurity incident response, management and investigation, digital forensics, online and social media investigations, and privacy related data loss assessments. 

CPE: 4.0 Hrs

Please Note:  There is a cancellation policy in effect