Carbon Black CB Response Questions
Nov 01 2021
Which would you choose?
Dec 20 2021
I'm a Senior Manager- Security Monitoring and Incident Response at a large manufacturing company. I am looking for thoughts from those who may have done a comparative analysis on these two products within the last 6 months or so. Realizing these technologies have advanced rapidly over the past... Read More »
Oct 12 2021
How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
Oct 12 2021
What do you like most about Carbon Black CB Response?
Thanks for sharing your thoughts with the community!
Oct 12 2021
If you were talking to someone whose organization is considering Carbon Black CB Response, what would you say?
How would you rate it and why? Any other tips or advice?
Security Incident Response Questions
Jan 20 2022
Hi SOC analysts and other infosec professionals,
Which standard/custom method do you use to decide about the alert severity in your SOC?
Is it possible to avoid being too subjective? How do you fight the "alert fatigue"?
Jan 12 2022
Hello security professionals,
What is the main difference between these two terms in incident response: mitigation and remediation.
Please share some examples, if applicable.
Dec 21 2021
Hi peers, I believe many of you have already heard of the recent Log4j/Log4Shell vulnerability that allows attackers to perform remote code execution (RCE). What does it mean for an organization? How can you check you're vulnerable and mitigate/patch it now, if at all? Lastly, what impact do... Read More »
Dec 13 2021
Hi infosec professionals,
Which deployment model should an enterprise organization choose and in which case?
Nov 30 2021
Which one is better and in which use cases?
Nov 29 2021
Hi security professionals, As the majority of you have probably heard, GoDaddy has been hacked again a few days ago. Based on what is already known, what has been done wrong and what can be done better? Share your thoughts! Read More »
Dec 10 2021
Why SOC is important for an organization? What are the main challenges of the modern SOC?
Nov 24 2021
Hi infosec professionals, We all know how security terms can be confusing and there are permanent discussions between professionals about simple ones. How would you describe the difference between cyber resilience and business continuity? How do you achieve each of them? Read More »
Nov 24 2021
When would you suggest using an internal SOC and when SOC-as-a-Service? What are the pros and cons of each?
Nov 24 2021
I'm working on a document about the Security Operation Center best practices, and I would like to get your inputs about it.
Aug 02 2021
What is the difference between Incident Detection Response (IDR) e.g. in Rapid7 InsightIDR and Endpoint Detection and Response (EDR) in other solutions?
Colonial Pipeline has confirmed it paid a $4.4m (£3.1m) ransom, according to BBC. Earlier this month, Hugh has written about it in this article: The Colonial Pipeline Ransomware Attack: Preventing the Next Cybercrime Disruption of Critical Infrastructure. Dear community, let's share your p... Read More »
Sep 08 2021
Hi community, We would like to hear your insights on the latest trends in SOC. What are you seeing in the field or forecasting? Please share your opinion on how these trends are going to influence the future of the relevant solutions, tools, etc. used in SOC. Looking forward to hearing your... Read More »
Sep 22 2021
Hi dear community,
Can you explain what an incident response playbook is and the role it plays in SOAR? How do you build an incident response playbook?
Do SOAR solutions come with a pre-defined playbook as a starting point?
Product CategoriesSecurity Incident Response
Download our free Security Incident Response Report and find out what your peers are saying about VMware, Dell EMC, IBM, and more!
- Carbon Black and Cylance Comparison for EDR
- What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
- What are the pros and cons of internal SOC vs SOC-as-a-Service?
- What does the Log4j/Log4Shell vulnerability mean for your company?
- What is an incident response playbook and how is it used in SOAR?
- What are the best practices for Security Operations Center (SOC)?
- What is the difference between cyber resilience and business continuity?
- What is the difference between mitigation and remediation in incident response?
- Why a Security Operations Center (SOC) is important?
- What types of Security Operations Center (SOC) deployment models do exist?