Alice is a Cyber Security Incident Response Analyst (aka Intrusion Analyst). Alice is responsible for intrusion alerts analysis. This means daily analysis of multiple security data sources, incident investigation, identification, verification. Also, Alice reports investigation results, recommend and implement incident response strategies. Alice must be able to work in a fast paced, high stress, support environment, and to work with a sense of urgency and strong attention to details.
In this presentation. I will present the key challenges in cyber security incident response. I will focus on correctness and automation challenges. The talk will present a general approach to solving these challenges and discuss different methods and techniques to implement practical solutions that improve the reliability and the efficiency of intrusion analysis. The presentation will conclude by outlining the directions for future research in cyber security incident analysis.
Dr. Sherif Saad Ahmed has 10+ years of cybersecurity and software development experience. Currently, Dr. Ahmed is the Chief Software Architect at Plurilock Security Solutions. He received his Ph.D. from the University of Victoria, British Columbia in 2015. Dr. Ahmed primary research interests are information security, software engineering, and machine learning.
Over the last ten years, Dr. Ahmed has been involved in several research projects to investigate real-world computer security problems. He developed his research methodology by working in academia and industry. Dr. Ahmed was fortunate to have the opportunity to work on real-world problems that directly linked to the industry. The majority of his research works focus on applying machine learning, computational intelligence, and data analysis techniques to design innovative security solutions.
Dr. Ahmed coauthored many information security research papers. He reviewed several information security books and papers. and has taught and developed several courses for university students in cybersecurity, software engineering and other computer science topics.