Responding to cyberattacks is a cat-and-mouse game. Every action from the security team will result in an opposite reaction from attackers. Even if attackers are kicked out of the infrastructure, they will attempt to regain entry.
As such, well-informed enforcement actions are critical. And it leads to a foundational question: when should enforcement be automated?
In this webcast, we will discuss:
- The set of criteria, such as a pre-defined risk thresholds, that must be considered when taking automated enforcement actions
- How to make the tradeoff with an approach that centers on manual actions
- Whether to architect a workflow that implements both automated and manual actions.
Can't make it? Register to receive an on-demand replay of the session.