Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/SwiftOnSecurity/statuses/113812162956214647">SwiftOnSecurity (swiftonsecurity@infosec.exchange)'s status on Sunday, 12-Jan-2025 12:32:12 JST</a><a href="https://infosec.exchange/@SwiftOnSecurity" title="swiftonsecurity@infosec.exchange"><img src="https://gnusocial.jp/avatar/25334-48-20231106112528.webp" width="48" height="48" alt="SwiftOnSecurity" style="position: absolute; left: 0; top: 0;">SwiftOnSecurity</a><div><a href="https://infosec.exchange/@SwiftOnSecurity/113812134500225495" rel="in-reply-to">in reply to</a></div></section><article><p>In this non-enterprise scenario there are basically 6 broad layers this problem could be. Application, Security, OS, Network device, or Server. Many paths. It can be paralyzing, this is where experience comes in.</p><p>In large incidents you may encounter varying levels of "hot potato" between departments where no path is selected because there is no incident command. You can learn to be that person.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4358060#notice-8522535">In conversation</a><time datetime="2025-01-12T12:32:12+09:00" title="Sunday, 12-Jan-2025 12:32:12 JST">about 10 months ago</time> <span>from <span><a href="https://infosec.exchange/@SwiftOnSecurity/113812162956214647" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@SwiftOnSecurity/113812162956214647">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/646548">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
SwiftOnSecurity (swiftonsecurity@infosec.exchange)'s status on Sunday, 12-Jan-2025 12:32:12 JST SwiftOnSecurity
in reply to
In this non-enterprise scenario there are basically 6 broad layers this problem could be. Application, Security, OS, Network device, or Server. Many paths. It can be paralyzing, this is where experience comes in.
In large incidents you may encounter varying levels of "hot potato" between departments where no path is selected because there is no incident command. You can learn to be that person.
In conversationabout 10 months ago from infosec.exchangepermalink
Attachments
1. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice