Most security teams ask "what could go wrong?" when planning incident response. But I've found that asking "what could go right?" fundamentally changes how we prepare -- and opens up more positive opportunities for teams in their response.
It's possible to thrive through an incident, not merely survive it.
