Why Elite Incident Response Teams Use Advanced Network Telemetry and Why You Should Too



Despite increasing investments in cybersecurity, organizations still fall prey to cyber attacks. When breached, they often call third-party incident response (IR) teams with specialized skills to recover and provide guidance on how to protect against future breaches. In this webinar we'll hear from battle-tested cybersecurity experts and former CISOs on the value of integrating rich network telemetry into security operations.

Whether you're an incident responder, in-house SOC analyst, or information security executive, you won't want to miss this session on how advanced Network Detection and Response (NDR) has become essential for helping IR teams accelerate incident handling, ensure defensible disclosure to stakeholders, and reduce the likelihood of future incidents for their clients.

Submit the form to watch this session today!

Watch the recording:

Jean Schaffer - image


Jean Schaffer

Federal Chief Technology Officer, Corelight

Jean Schaffer is an experienced professional in Cybersecurity, Information Assurance, and IT Operations. She is recently retired from the Intelligence community after 33+ years of public service, 15 at SES level. Jean brings technical expertise, understanding of the IC/DoD and a wealth of experience.

James Perry - image


James Perry

Senior Director of Consulting Services, CrowdStrike

As Senior Director of Consulting Services and Global Head of Incident Response at CrowdStrike, James Perry is responsible for the strategic direction of the CrowdStrike Consulting Services practice and overseeing client engagements. Prior to joining CrowdStrike, James was a Chief Technologist at a large consulting firm where he co-led the Incident Response practice, advised senior executives on cyber defense strategies and implementation, and led a team of threat analysts, hunters, and security operations centers (SOC) specialists.

Richard Bejtlich - image


Richard Bejtlich

Strategist & Author in Residence

Richard began his digital security career as a military intelligence officer in 1997 at the Air Force Computer Emergency Response Team (AFCERT), Air Force Information Warfare Center (AFIWC), and Air Intelligence Agency (AIA).Previously Chief Security Strategist at FireEye, and Mandiant's Chief Security Officer when FireEye acquired Mandiant in 2013. At General Electric, as Director of Incident Response, Richard built and led the 40-member GE Computer Incident Response Team (GE-CIRT).

James Pope - image


James Pope

Director of Technical Marketing Engineering, Corelight

James Pope is an infosec junkie who has hunted in universities, governments, infosec cons, and orgs up to the largest of large. James is passionate about teaching and sharing knowledge that helps orgs improve their security posture.

Corelight provides security teams with network evidence so they can protect the world's most critical organizations and companies.


CrowdStrike is a leader in cloud-delivered protection of endpoints, cloud workloads, identity and data.