0      0

(ISC)2 Security Congress 2022

2101748 - Key Success Factors When Outsourcing Incident Response

Oct 11, 2022 4:15pm ‐ Oct 11, 2022 5:15pm


Organizations are increasingly planning for the inevitable: a sizable cybersecurity issue that may land them on the headlines. When planning for such an event, it’s not an uncommon practice to outsource incident response requirements to a remote incident response team. This may include leveraging a retainer or other arrangement to essentially have expertise available during a time of crisis.

Unfortunately, it’s not as simple as the organization calling on incident responders with an urgent cry for help. How well the organization prepares to work with their incident responders and considers the people, process and technology in place to support such a team may ultimate enable or hinder a successful response to a cybersecurity incident.

Learning Objectives:
  • Understand how outsourcing incident response skill sets isn't as simple as signing a contract; key preparation in a variety of areas is required.
  • Discover how inthe initial hours of a cybersecurity incident, it becomes critical that the organization has technical skill sets within select team members to ensure the ability to work with a remote incident response team.
  • Know how remote incident response teams may rely on existing technologies already in place prior to an incident or plan on deploying their own toolsets. This presents a variety of unique considerations, especially in highly regulated environments.


  • John Hollenberger, CISSP, CISA, GCIH, GWAPT, Security+, Senior Consultant, Incident Response, Secureworks
  • Mr. Robert Lelewski, CISSP, CISSP-ISSMP, CISA, CISM, CRISC, CFPSE, EnCE, CCE, CIPM, and GCIH, Director, Secureworks

You must be logged in and own this session in order to post comments.