Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Make onsite appointment

Forums it-sa Expo Knowledge Forum C

Cyber Incident Response - Plan for what you are most afraid of!

The presentation will show how effective cyber incident response processes can be developed and which stumbling blocks can occur.

Buy trade fair ticket

You can register for this action soon.

You can register for the digital action soon.

Please come back at the scheduled date and time.

The action is currently live. Please scroll down to watch.

This action is only available onsite: Forums it-sa Expo

Add action to bookmarks and download as iCal

Join now

Note: If you continue, the contact data you provided during registration may be transmitted to the respective provider in accordance with our General Terms and Conditions.

Please log in or register in advance so that you can take part in actions or watch the action videos!

This action has already taken place. This action will soon be available as a video.

This action has already taken place. Please scroll down to watch the video.

This action has already taken place. Please login or register to watch the video.

This action has already taken place. It's not available any more.

You are in!

Your ticket / access to the action was sent to you by email.

There is a problem with the action at the moment. Please come back later or contact support.

calendar_today Tue, 12.10.2021, 10:30 - 10:45

event_available On site

place Hall 7, Booth 7-631

Action Video

south_east

Action description

south_east

Speaker

south_east

Product

south_east

Themes

Awareness / Phishing / Fraud SIEM / Threat Analytics / SOC

Organizer

Airbus Protect GmbH

Event

This action is part of the event Forums it-sa Expo

Action Video

Action description

24 hours for the recovery of the IT infrastructure for the email services and voice over IP and 48 hours for the recovery of the production infrastructure!

These were the requirements of an (anonymised) customer project for the development of practice-oriented recovery and restart plans after several locations were affected by cyber-attacks in the past. In the presentation "Cyber Incident Response - Plan for what you are most afraid of!" it will be shown how an effective Cyber Incident Response Management can be developed.

Based on different scenarios developed with the customer, methods are presented on how to minimise the impact of cyber incidents and how to develop processes in the following phases: identification, analysis, containment, eradication, recovery and post incident activities. The focus here is on processes and organisational measures that go beyond technical measures for analysing and eliminating malware. These include exemplary activities such as escalation and de-escalation, reporting to the data supervisory authority, but also easily overlooked activities and stumbling blocks such as the failure of IT-supported forklifts. Because according to the manufacturer, the replacement of the forklift IT takes up to 3 months and is thus strongly contradictory to the above-mentioned demands on the part of the management.

In addition to the examples mentioned, the presentation will point out further stumbling blocks, but also success factors, which are not mentioned in the current norms and standards.
... read more

Language: German

Questions and Answers: No