A Planned Methodology for Forensically Sound IR in Office 365 - SANS DFIR Summit 2018

Download

A Planned Methodology for Forensically Sound IR in Office 365 - SANS DFIR Summit 2018

Video Channel: SANS Digital Forensics and Incident Response

A planned methodology for developing and implementing a forensically sound incident response plan in Microsoft’s Office 365 cloud environment must be thoroughly researched and re-evaluated over time as the system evolves, new features are introduced, and older capabilities are deprecated. This
presentation will walk through the numerous forensic, incident response, and evidentiary aspects of Office 365. The presentation is based on two years’ worth of collection of forensics and incident
response data in Microsoft’s Office 365 and Azure environments. It combines knowledge from more than a hundred Office 365 investigations, primarily centered around Business Email Compromise (BEC) and insider threat cases.

Devon Ackerman (@AboutDFIR), Associate Managing Director, Kroll Cyber Security

a-plane, a-plane sapphire, a-plane gan, a plane crash, a planned c section, a planned economy, a plane crash today, a plane tree, a planet of apes, a planet fitness near me, a planned parenthood, a planner app, a plane crash in the hudson river, plain jane, a plane games, a planetarium near me, a planned economy definition, a planet earth, a planet fitness, a planner book, A Planned
Loading...