it mainly went on question and answers mode. focuing on incidents, security and troubleshooting the issues. Communication to the stake holders on security events.
then the questions focuses on how to daignosing the security incidents. this involves using IDS and alert mechanism