Abstract

Incident Response Redefined - Preparing, Strategizing, and Automating for a Security by Default Future. 

In today’s dynamic threat landscape, effective incident response requires more than reactive measures—it demands robust preparation and strategic foresight. This session explores the essential building blocks of incident response, including proactive planning, well-defined strategies, and how emerging technologies such as Zero Trust, AI, and automation can transform your defense posture. We will present real-world examples and practical adoption models to demonstrate how integrating a Security by Default architecture can serve as a foundational block for resilient, agile cyber defense.

Session Description

Incident response is at the core of any resilient cybersecurity strategy. This session will take a deep dive into:

• Preparation & Strategies
  • Building a comprehensive incident response plan that emphasizes risk assessment, team roles, communication protocols, and continuous training.
  • Developing strategies that anticipate threats and reduce reaction times, while ensuring minimal operational disruption.
    
    
• Technological Enablers
  • How adopting Zero Trust principles can minimize lateral movement and prevent breaches from escalating, using concrete examples from enterprises that have shifted to a Zero Trust model.
  • Real-world use cases where AI-driven threat detection and automated analysis have enhanced situational awareness and expedited response.
  • Demonstrating how automated workflows can transform chaotic incidents into manageable events by streamlining alert handling, remediation, and compliance reporting.
• Security by Default and Resiliency
  • Discussing the paradigm of "Security by Default" as a proactive approach to design and architecture—integrating security into every layer from the outset.
  • Outlining the role of resiliency as a foundational block that not only ensures rapid recovery but also fortifies systems against future threats.

Attendees will walk away with actionable insights on how to harmonize these technologies and strategies into a unified, future-proof incident response framework that is both feasible to adopt and proven in practice.

Learning Objectives
By the end of this session, participants will be able to:

• Develop and refine incident response plans with a focus on preparation and strategic execution.
• Understand how Zero Trust architectures can limit breach impact and enhance overall security.
• Leverage AI and automation to improve detection, analysis, and remediation in real-world scenarios.
• Implement a Security by Default approach to build resilient systems that are prepared for evolving threats.
• Evaluate real-world case studies to extract lessons applicable to their own organizations.

Target Audience

This session is designed for cybersecurity professionals, incident response teams, IT managers, and executives who are responsible for safeguarding digital assets. Whether you're refining an existing incident response plan or looking to integrate advanced technologies into your defense strategy, this session will offer valuable insights and practical guidance.

Presenter Bio
Tiago Deretti is a seasoned IT Infrastructure & Security Leader with a proven track record in transforming and securing complex environments. With over two decades of experience managing global infrastructure, Tiago has led cross-functional teams in designing resilient data centers architectures, and security frameworks for high-profile enterprises. As Platform Manager at HaystackID, he drives enterprise architectures across global operations, automation and robust incident response. An alumni of MIT’s Management of Technology program, Tiago combines deep technical expertise with strategic vision to foster innovation and operational excellence. He is also a security researcher and active contributor to the cybersecurity community, and a member of the InfraGard National Members Alliance and other industry initiatives.

Session Format
The session will combine a high-impact presentation with interactive elements, including real-world case study analyses and a Q&A segment. Participants will be encouraged to engage in discussions, share their own challenges, and explore practical strategies for enhancing incident response capabilities.