This document discusses accelerating incident response for organizations of any size. It outlines typical incident response workflows and how current security infrastructure like antivirus and firewalls can generate many alerts that are difficult to investigate. The presentation then shows how Cisco's security products like Email Security, Umbrella, AMP, ThreatGrid, and others can be integrated to provide automated hunting and 30+ days of recorded network history to accelerate incident response investigations. Examples of incident response scenarios are also presented. Attendees are invited to try out the tools themselves.