Threat Hunting & Breach Investigations: Lessons Learned
Incident responders and law enforcement officials are in agreement: Reactive tactics are no longer sufficient in the coordinated efforts to detect and respond to cybersecurity incidents. Internal organizations need to embrace proactive threat hunting capabilities, and they must develop working relationships with federal law enforcement agencies before an incident becomes an investigation.
Join Anton Chuvakin, Research Vice President for Gartner, for an overview of:
- What threat hunting is and is not
- The skills and tools needed for a mature threat hunting capability
- Lessons learned from recent breaches and investigations