Executive Boardroom - 12:25 pm - 12:50 pm

"Breakout time" is the average time it takes an intruder to compromise a system and move laterally through a network. This concept is emerging as a critical window to stop a breach, and on average it takes one hour and 58 minutes. Best practices dictate that preventing/detecting is less than 1 minute, analyzing is less than 10 minutes, and responding in less than 60 minutes to stop these adversaries. Is your department or organization up to the challenge? 

Join CrowdStrike for an important, in-depth discussion of the common hurdles Canadian organizations face in developing and executing an effective incident response framework. We will discuss ?outcome-driven metrics? that can spell the difference between an organization stopping a breach or experiencing catastrophic data loss: 

  • First is Time to Detection â?" organizations should set a goal of allowing only one minute to detect an incident or intrusion (automated). 
  • Second is Time to Investigation â?" the length of time it takes to find out if the incident is legitimate and determine next steps (containment, remediation, etc.). The best organizations do this within 10 minutes. 
  • Third, and most important, is Time to Remediation â?" the period of time needed to eject the intruder and clean up your network, which may involve coordination with the business owner of that asset. The best organizations try to do this within 60 minutes.

Presented by:

Serge Bertini, Vice President Canada, Crowdstrike View details


Sponsored by:

Crowdstrike View details