Getting Ahead of Threats: Building an Integrated Defense Strategy with MDR and Incident Response

Available On Demand

Home » Resources » Webinars » Getting Ahead of Threats: Building an Integrated Defense Strategy with MDR and Incident Response

In today’s fast-evolving threat landscape, a purely reactive cybersecurity strategy is no longer enough. To protect your organization and minimize business disruption, it’s essential to combine Incident Response (IR) and Managed Detection and Response (MDR) into a cohesive, proactive defense.

Our panelists will explore how integrating IR and MDR creates a holistic cybersecurity strategy that not only responds to incidents but anticipates and prevents them. The current threat landscape has dramatically impacted what an effective incident response plan looks like. By leveraging IR teams to collect artifacts, identify root causes, and build comprehensive lists of threat indicators, organizations can create a rich source of intelligence. This intelligence can then be operationalized by MDR providers in real-time, ensuring continuous monitoring, proactive threat detection, and steady-state defense. This combined response package enables companies to minimize the impact of an incident.

Key Takeaways:

Build a Proactive Cyber Defense: Understand how combining forensic analysis with continuous threat monitoring transforms your organization’s security posture from reactive firefighting to proactive threat prevention.

Mitigate Business Disruption: Discover how the integration of IR and MDR minimizes downtime and mitigates the impact of cyber incidents by moving from reactive responses to proactive mitigation.

Maximize the Value of Security Services: Learn the importance of optimizing your investment in cybersecurity by ensuring IR insights are seamlessly integrated into MDR operations, increasing the overall value and effectiveness of your security services.

Join us to discover how IR and MDR, working in unison, can streamline your security processes, reduce risk, and help your organization stay ahead of cyber threats.

About The Panelists

John Ansbach

Managing Director at Stroz Friedberg, an Aon company

John Ansbach serves as Managing Director in Stroz Friedberg’s Dallas office. In that role, John leads complex cyber security incident and breach response investigations for companies and other organizations all over the world,including Fortune 100 and private equity firms. He also supports his clients in proactively building cyber resilience – through advisory, threat intelligence and testing work – to resist and defend against cyberattacks, and inhandling complex digital forensic investigations, including but not limited to white collar criminal and regulatory enforcement actions. John has a Master of Science in Cybersecurity, speaks regularly on issues related to cyberrisk and is a member of the International Association of Privacy Professionals (IAPP). He is also a Certified Information Privacy Professional for the U.S. private sector (CIPP/US).

Partha Alwar

Director, Incident Response at Stroz Friedberg, an Aon company

Partha Alwar is a Director at Stroz Friedberg Digital Forensics and Incident Response, a specialized risk management firm built to help clients solve the complex challenges prevalent in today’s digital, connected, and regulatedbusiness world. In this role, Mr. Alwar serves as a technical lead in investigations related to Digital Forensics and Incident Response. Mr. Alwar’s expertise primarily lies in host-based forensics, log analysis and malwarereverse engineering. He also holds the GCFE and GREM certifications.

Kris Wayman

Field CTO at Binary Defense

Kris Wayman has over a decade of experience in the IT security industry, where he’s led critical efforts in threat hunting and attack prevention. Prior to joining Binary Defense, he served as Senior Manager on the GlobalSolutions Engineering team at Sophos, where he led a vanguard team focused on helping customers stave off cyber-attacks from ransomware and other sophisticated threats. Wayman began his career with significant roles at ManagedService Providers (MSPs) and Cloud Service Providers. These roles provided him with a deep understanding of the security and compliance challenges that companies face, which has been instrumental in shaping his proactiveapproach to cybersecurity. Over the years, Wayman’s efforts have consistently focused on understanding the unique security needs of clients and delivering tailored solutions to protect their critical assets.

John Dwyer

Director of Security Research at Binary Defense

John Dwyer is the Director of Security Research and Head of ARC Labs at Binary Defense where he lead research and development initiatives to improve Binary Defense product and services as well as threat research to developmeaningful insights and trends for the security community. John (@_dwyer_ ) brings 15+ years of security and technology experience, with an extensive background in security research and development, incident response, threathunting, security thought leadership, and adversary operational analysis. Prior to Binary Defense, John spent time with IBM X-Force, MIT Lincoln Laboratory, as well as Carnegie Mellon’s Software Engineering Institute as aresearch and incident responder. John has spoken at the world’s largest cybersecurity events such as Black Hat, RSAC, and SANS Threat Hunting Summit.

About The Moderator

Rachel Ratcliff

Engagement Management Leader at Stroz Friedberg, an Aon company

Rachel Ratcliff is a Senior Managing Director and the head of Stroz Friedberg’s Dallas, Texas office. Rachel leads and manages the Engagement Management group within Aon’s Cyber Solutions and serves on a number of executivecommittees within the firm. Her focus has been on managing some of the firm’s most complex incident response engagements, including the investigation into a data breach perpetrated by a nation-state threat actor spanning threecontinents, the shutdown of operations for a multinational corporation due to a sophisticated ransomware attack, and assisting multiple clients with regulatory inquiries as a result of the theft of data by organized cyber criminals.