Join us for a tabletop with a technical twist on the security challenges of today. Modern, cloud-based, distributed tech stacks have enhanced engineers’ ability to do incident response, but they also come with new expectations and responsibilities that require a different set of skills. Incident response and threat hunting are hard to learn—and can be very expensive to learn during an active incident. In this workshop-cum-tabletop, we’ll provide hands-on experience using security information and event management (SIEM) tools and processes to detect and respond to real-world security events by simulating an external threat actor attacking multiple services and from multiple directions. Using your everyday skills, you will learn how to think on your feet and find a solution using tools and tactics with your team.