A new report from the SANS Institute, “Measuring and Improving Cyber Defense Using the MITRE ATT&CK Framework,” provides expert guidance to help cyber defense professionals learn how to best leverage the MITRE ATT&CK Framework to improve their organization’s security posture. Recommendations in the report will be shared and discussed in a trio of webcasts on July 21, July 28, and August 06.
The Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) project by MITRE is an initiative started in 2015 with the goal of providing a knowledge base of adversarial tactics, based on real-world observations and accessible globally. With its rapid uptake by vendors and information security teams, ATT&CK now provides a key capability that many organizations have traditionally struggled with: A standard language of attack techniques, groups that use them, and the data sources that detect them.
HR Technology News: MPS Limited Announces Christian Mutzner As New Chief Operating Officer Of MPS Europe
“MITRE ATT&CK is a multi-faceted framework that can help you not only understand your attackers’ tactics, techniques, and procedures, but also prioritize and test your defenses in a variety of highly useful ways,” says John Hubbard, paper author, SANS Certified Instructor and course author. “It is a complete set of data giving you organized and actionable info on attackers and defensive strategies.”
The new SANS paper covers key ideas and strategies for using ATT&CK to inform security defense measures with valuable threat intelligence, allowing security operations teams to not only improve their defenses, but also quantify the improvement, demonstrate those improvements with evidence, and ultimately set the team on the path to long-term success.
HR Technology News: TecHRSeries Interview with Elan Amir, CEO at MeasureOne