0      0

(ISC)2 Security Congress 2022

2101773 - 'Fail to Plan = Plan to Fail' - Preparing For Your Cybersecurity Incident Response

Oct 10, 2022 2:30pm ‐ Oct 10, 2022 3:30pm


Every organization, regardless of level of preparation and resources, will have a cybersecurity incident. But if there is an incident, all cybersecurity professionals need to do is patch the vulnerable software, update a firewall or take other cybersecurity steps, right? Far from it! Cybersecurity incidents don’t stay neatly in the CISO domain – they can hit across all organizational domains, including – but not limited to – legal, marketing, branding, human resources, financial, facilities – even physical infrastructure. We, as leaders in the cybersecurity industry, must not only recognize and appreciate the broad organization-wide (and beyond) impacts, but we must war game all viable contingencies with key stakeholders and have playbooks developed pre-incident to respond in a repeatable and comprehensive manner.

Learning Objectives:
  • Recognize the importance of preparing "left of the incident" and not just "right of the incident."
  • Understand the breadth and depth a cybersecurity incident has across an organization (including third parties and partners).
  • Appreciate the tools, processes, procedures and techniques to have ready in advance of an incident, so that they can be rapidly, repeatably and securely implemented after a cybersecurity incident.


  • Mr. Andrew Boyle, CISSP, CEH, PMP, PMI-ACP, SAFe SPC/SA, PRINCE2, AWS-SAA, FinOps CP, NN/g UXC, Director and Distinguished Digital & Cyber Technologist, Booz Allen Hamilton

You must be logged in and own this session in order to post comments.