Thoughts of a fledgling Incident Responder: one month in

As stated in my recent posts, I've made another career switch. This time, I'm dipping my metaphorical toes into the increasingly mission-critical area of most businesses: that of cyber security. The new look that I've applied to this blog, that of a darkened forest, is an analogy that I find apt. In broad strokes, most people are aware of its existence, yet few have explored it to find the diversity of the elements which comprise it. 
Being such a neophyte myself I count myself as especially fortunate, to be in a team where there are already experts I could call upon, where we have the potential to leverage powerful, industry-leading tooling, and in an environment where every employee is called upon to actively protect not only our own data and assets, but those we are entrusted with by our clients. 
In fact, it was immediately apparent that one has no choice but to take this role seriously if only because my employer's clientele consists mostly of organizations that collectively affect the lives of literally millions of people: if even one industry's portfolio of applications that we have designed and maintain were to stop working, large swathes of society would logistically be crippled. As digital data grows not just in size and extensiveness but in how integral it becomes to life decisions, be they for individuals or at the federal government and international perspectives, so too does the relevance of protecting it and preventing its exfiltration and abuse.
That I couldn't find many public anecdotal tales from other incident responders didn't surprise me: the very nature of this job requires a strict and almost absolute amount of secrecy that shrouds the details of the day to day workload that we handle. On the other hand and contradictorily, the definition of my new role and the varied playbooks that we follow seem ubiquitous online so I'll spare the reader a redundant attempt to cover those here or in future blogs.
I've encountered several comparisons of IRs to that of fire fighters and other responders: ignoring the urge to shy away from complicated and impactful events, we rather rush towards them, ideally with a level head and serving as an effective source of support to those already embroiled in it.
I look forward to chronicling more thoughts in the months to come, particularly as I gain more insights in not just handling, but (hopefully) thriving in this role.

Comments

Post a Comment

All time popular posts

Is larger (PPC) better? Size matters, but... the #G+ strategy

After winding down from what still feels novel but is actually BAU (business as usual) for me today, I read an article which includes this passage: In testing for the ads, Google mentioned clickthrough rates were significantly higher than the previous 2/3 line sitelinks. One would argue that is hardly surprising givent he[sic] real estate that these new ads take up, and that in itself presents more interesting scenarios to SEO’s[sic] who are already under pressure with many of the changes Google has made to its search results set. Further more[sic] these results bear many similarities to those of the sitelinks already in place within organic search results. More real estate to PPC which this undoubtedly will mean, should mean yet more traction for PPC results, and less visibility on organic results potentially resulting in the following scenario - More advertisers using PPC as organic visibility is being throttled - Competition within both PPC and SEO significantly increasing
Read more

「ほとんど日本人と異ならないですね」

数年前に、NLP関係の研究チームに加わって間もなく言われた言葉でした。たしかに日本語が通じるという事を履歴書に示してきたおかげで、幾度も仕事のチャンスが与えられてきた。その「ほとんど」が微妙だけど、まあたしかに完璧な語学力とはほど遠いのは痛いほどわかってもいる。 私はカナダで生まれ育ったので、日本での滞在歴はなんと数週間のみ(ちなみに二週間以上いた期間は3歳になる直前だった)。土曜の午前中に行われる日本語学校へ十年ほど通い、せいぜい中学生レベルくらいの国語を身につけたのだが、主に多量のフィクション(漫画も含む)を読み続ける事、日本にいる親戚との文通、そして父母とは日本語のみで対話していた事があったおかげで今にいたる。 とにかく、「使わなければ無くす」ため、(英語だと"use it or lose it"ですね)定期的に日本語でツィッターやブログを書いて行こうと心がけしてますが、どうぞよろしくお願いします。コメントもいつでも日本語でお気軽に書き込んでください。
Read more

Google+ increasing its reach

Just about a week ago, it was announced that Blogger users may now mention either people or pages from Google+ in the same manner as within G+ itself. This would have been quite useful when I first promoted my  +Mayo Takeuchi Plus  page, which has now accumulated a good body of photographs. However, I cannot seem to cite myself, perhaps because I've linked this blog to my personal Google+ account and it would be self-serving? In the meantime, I've also added more G+ related widgets on this blog, including one that allows me to show thumbnails of people who have circled my personal account. Another button hopefully will encourage more people to circle my aforementioned Plus page. During my "day job" researching I'd also noticed that, although the follower/circle counts weren't up to date, that the PPC spots were also starting to make mention of sponsor pages on Google+. In an article " marriage of SEO and Social Media " (which likens this union
Read more