Don Murdoch

Biography

Don Murdoch, GSE, is a seasoned IT leader with 25 years of IT and InfoSec experience, with the most recent decade as IT/InfoSec security Director, Enterprise and Security architect in the healthcare industry. Don also has significant experience as an instructor and course developer for SANS and other leading security organizations. Don is currently managing the security operations center for SLAIT Consulting.

Presentation Title

Building Your Sec Ops Use Case

Presentation Overview

Use case development is an essential skill in the security architecture and systems analysis knowledge domains. An ordered use case defines how a security operations team works, the issues the team addresses, and how the team responds alarms and performs threat hunting. In this session, a well-defined and proven use case model will be presented, complete with a functional use case model The model is designed to maximize meeting time, leverage the IT $pend, and provide clear guidance so that security incident response can achieve better outcomes. Don will present material from Blue Team Handbook Vol 2, due out Q4/2017, and explain how to develop security focused use cases that work and stand the test of time.