Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Building a Product Security Incident Response Team - Learnings From the Hivemind

Black Hat via YouTube

Overview

Discover how to establish and operate a Product Security Incident Response Team (PSIRT) in this informative Black Hat conference talk. Learn about the essential components of PSIRT processes, including vulnerability report handling, collaboration with development teams, customer support, and communications. Gain insights into implementing incident response mechanisms for small to medium-sized companies with limited security resources. Explore common SIRT structures, role responsibilities, and the integration of PSIRT within the Security Development Lifecycle (SDL). Delve into the incident response process, internal policies, and public documentation practices. Acquire practical knowledge on SIRT toolkits, data management, and potential pitfalls to avoid. Benefit from templates, actionable recommendations, and best practices derived from mature security response organizations. Access free resources to support your product incident response program development.

Syllabus

Intro
AGENDA
BUT WHAT ABOUT ISO STANDARDS!?
COMMON SIRT STRUCTURES
TYPICAL ROLE RESPONSIBILITIES
SDL OVERVIEW
INCIDENT RESPONSE PROCESS
INTERNAL POLICY
PUBLIC DOCUMENTATION
TOOLKIT
DATA MANAGEMENT FOR SIRTS
PITFALLS
FREE RESOURCES
QUESTIONS

Taught by

Black Hat

Reviews

Start your review of Building a Product Security Incident Response Team - Learnings From the Hivemind

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.