Make IR Effective with Risk Evaluation and Reporting

Today, determining risk of a cyberattack is the generic vulnerability or malware rating ignoring aspects of how the business is impacted. Understanding the vulnerability state of the network, reputational risk, business loss, cost of IR and reconstitution cost are rarely understood. This presentation will show a data-driven approach to IR prioritizing response based on risk and business impact.


Justin Monti; Mischel Kwon@MKAsays )

Justin Monti is Sr. VP, Security Engineering at MKACyber focusing on managing technical security services including security architecture, remote monitoring and security program consulting. He assists MKACyber clients in applying technology to successfully execute holistic security programs, protecting the organization’s mission and draws on over 15 years of IT and InfoSec experience in the private and public sector. Prior to MKACyber, he served in numerous capacities at NetWitness as it grew from a small startup to acquisition by EMC in 2011. Prior to NetWitness, Monti supported government financial management systems as a system architect and information system security officer (ISSO). Monti holds a bachelor’s in computer science and business economics from Brown University.

Mischel Kwon is a recognized IT security leader with 32 years of experience in technical security operations, incident response and information assurance as well as building and managing organizational and national level SOC, CERT and IR Teams. Kwon currently serves as the President and CEO of MKACyber, a security consulting firm specializing in Technical Defensive Security, Security Operations and Information Assurance. Kwon has held senior roles in the U.S. Government, including Director of US-CERT where she coordinated national-level IR activities and at the U.S. Department of Justice where she established and managed the Justice Security Operations Center (JSOC). Kwon holds an M.S. degree in computer science and a graduate certificate in Computer Security and Information Assurance.

Detailed Presentation:


(Source: RSA USA 2016, San Francisco)


E-mail me when people leave their comments –

CISO Platform

You need to be a member of CISO Platform to add comments!

Join CISO Platform

RSAC Meetup Banner

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)