“I Got an Alert, Now What?” is an informative talk by Kellon Benson, Senior Incident Handler at Red Canary, where he guides the audience through the process of swiftly assessing new security alerts and determining their threat potential. Using live data from Emotet and CarbonBlack’s EDR, Kellon demonstrates practical investigation techniques, highlighting the significance of asking pertinent questions to make informed decisions.
As a seasoned security analyst with expertise in digital forensics, compliance, threat hunting, and more, Kellon’s presentation equips the audience with valuable skills to handle security alerts effectively. By emphasizing the importance of understanding alert information, identifying critical data points, and leveraging insights to handle potential threats, the talk provides a comprehensive guide to alleviate pressure and respond promptly during critical security situations.