Forensics , Incident & Breach Response , Security Operations

Incident Response: Taking a More Deliberate Approach

Kelvin Coleman of National Cyber Security Alliance Offers Guidance
Kelvin Coleman, executive director, National Cyber Security Alliance

Organizations in all sectors need to take a more deliberate approach to incident response, says Kelvin Coleman, executive director of the National Cyber Security Alliance.

See Also: A Brief Guide to a Secure Multicloud Environment

The first step, he says, is to determine why and how they were attacked. "Look at the entire picture, as much as you can, and then address the situation, because you might be making it worse when you're rushing right into an answer," he stresses.

In a video interview with Information Security Media Group, Coleman discusses:

  • The importance of basic cyber hygiene and the use of the NIST cybersecurity framework;
  • Common incident response errors to avoid;
  • Key considerations in the aftermath of the hacking of Twitter.

As executive director at the National Cyber Security Alliance, a nonprofit public-private partnership promoting cybersecurity and privacy education and awareness, Coleman is responsible for leading organizational growth; facilitating strategic partnerships and alliances with government, industry and nonprofits; and acting as NCSA's primary spokesperson. He has two decades of experience in cybersecurity posts at the White House, the U.S. Department of Homeland Security and the private sector.


About the Author

Anna Delaney

Anna Delaney

Director, ISMG Productions

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.asia, you agree to our use of cookies.