Back
#174
May 27, 2024

EP174 How to Measure and Improve Your Cloud Incident Response Readiness: A New Framework

Guest:

Angelika Rohrer, Sr. Technical Program Manager, Cyber Security Response at Alphabet

Topics:

Cloud IR and Forensics How Google Does
29:29

Subscribe at Spotify.

Subscribe at Apple Podcasts.

Subscribe at YouTube

Topics covered:

  • Incident response (IR) is by definition “reactive”, but ultimately incident prep determines your IR success. What are the broad areas where one needs to prepare?
  • You have created a new framework for measuring how ready you are for an incident, what is the approach you took to create it?
  • Can you elaborate on the core principles behind the Continuous Improvement (CI) Framework for incident response?
  • Why is continuous improvement crucial for effective incident response, especially in cloud environments? Can’t you just make a playbook and use it?
  • How to overcome the desire to focus on the easy metrics and go to more valuable ones?
  • What do you think Google does best in this area?
  • Can you share examples of how the CI Framework could have helped prevent or mitigate a real-world cloud security incident?
  • How can other organizations practically implement the CI Framework to enhance their incident response capabilities after they read the paper?

Do you have something cool to share? Some questions? Let us know:

View more episodes