A Guide to Incident Response Framework: Data Mining and Managed Review

You are here:
Date: May 23, 2024
Time: 10:00 AM EDT | 9:00 AM CDT | 7:30 PM IST

Topic: A Guide to Incident Response Framework: Data Mining and Managed Review


Abstract: This final session of the Incident Response Framework series highlights a less forensics-focused topic within the realm of incident response that is nonetheless critical to the organization dealing with a cyber incident. This webinar will cover the concepts of data mining (DM) and managed review (MR), explaining why it is common in many IR cases. It will highlight the role of the forensic or IR personnel in this process, how the process works, and where it fits within the IR lifecycle. Additionally, it will help identify the key stakeholders in this two-stage process, highlighting why it is often the costliest and one of the most challenging parts of an IR engagement for all stakeholders involved. Furthermore, it will address what potential complications errors in this phase can bring to your client or organization.

Key Takeaways: 

  • What is data mining and managed review?
  • Where does it fit within the IR lifecycle?
  • Components of the DM and MR phase.
  • Why can it be a pain point for business?
  • How to proactively mitigate the causes of pain that may come from a data mining and management review process?

Eder RibeiroEder Ribeiro, Senior Cybersecurity Program Manager
Bio: Eder graduated from Roger Williams University School of Law, earning his Juris Doctor. He has also earned a Master of Science in Cyber Security. He has led TransUnion’s Incident Response Forensics (IRF) team over the last six years. In his “leading from the front” style, Eder has led the IRF team through thousands of cases ranging from unauthorized cryptocurrency mining, ransomware, business e-mail compromises, and much more.
Eder also has 16 years of experience in the United States Rhode Island Army National Guard, where he led troops as a team leader on a combat deployment in the Kandahar Province in support of Operation Enduring Freedom. Eder is a certified mediator and performs duties at the state headquarters level. Eder’s expertise includes solution/product creation, program development and expansion, threat assessment, risk mitigation, security process improvement, privacy compliance, and contract drafting. He has worked with over 1,000 organizations in his current capacity, helping them determine and react to the nature of their security incident breaches and determining the best course of action to recover to safe operations and meet compliance obligations.

Share this Article
You may also like

Train with EC-Council

Cyber Talks
Recent Posts