Lifecycle of an IT security incident

After completing my bachelor’s degree in “Enterprise and IT Security” at HS Offenburg, I worked at Robert Bosch GmbH for two years. There, I was involved in process optimization and automation in the field of IT security. Subsequently, I pursued a master’s degree in “Computer Science” at KIT in Karlsruhe, where I again focused on various topics related to IT security. Starting two years ago, I am now supporting Atruvia AG in handling security incidents through their automated processing and data enrichment as a Cyber Defense Automation Engineer.

I will take you on a journey through our incident response process. From detection to resolution and post-incident review, an IT security incident goes through various phases, each involving distinct activities. You will learn how a Security Information and Event Management (SIEM) system filters out the most relevant events from billions of data points and how Automation Engineers use a SOAR platform to streamline and orchestrate the response process to support Security Analysts in their daily work. Throughout our journey, we will follow a real-world example, bringing the theory to life.