Great sessions this week - thanks to all of you for joining in with the conversations.
Here's some of the areas Ben covered in his session, and the resources that you might want to explore further...
- As mentioned in our discussions it's often worth looking at decoupling an ITSM platform from the Security incident reponse platforms (SIRP). SIRP's are heavily focused not only on workflow but Automation and Orchetstration
- The Hive Project is a gold standard of a SIRP and is a free and open source project. You can read more about the hive at the project page http://thehive-project.org/
- The Hive project when used in conjuction with utilities. https://www.tines.com/ and https://n8n.io/ provides phenominal automation and orchestration that you wouldn't typically see in a traditional ITSM
We also mentioned an analysis of the REvil/Kaseya attack, and how Sophos responded - you can catch that here - https://vimeo.com/572576580
And finally, the really useful SophosLabs infographic is below - definitely one to use to talk to your team about!
Anything else you need, just ask in the comments. Have a great weekend all, and see you for 2 more exciting sessions next week.