Chapter Meeting 2022 January

January 19, 2022 6:30 pm - 8:15 pm

Meeting Teleconference

Webcal

Agenda


6:30 – until (about 7:30)

 

Bears, Dukes, Kittens & Pandas – Using MITRE’s ATT&CK to Evolve Security Architecture – BRKSEC-2431

, Technical Solutions Architect, Cisco Systems, Inc. – Distinguished Speaker

 

It can be easy to get wrapped up in the code names of nation-state and cybercriminal organizations. Attribution of cyber-attacks and breaches gets a lot of coverage, but most environments dedicate their budget and resources to remediation rather than naming and shaming. But is there value in knowing who did the deed? And what is that value? A lot can be learned by a sophisticated enterprise about their foes, but how can operators benefit from this information earlier to help mature any environment? Luckily, the gracious folks at MITRE have provided a knowledge base in the form of ATT&CK that can be used in Threat Hunting by organizations of all sizes, geographies, and verticals. Because ATT&CK distills the Tactics, Techniques, and Procedures (TTPs) used by many known groups and helps align their TTPs to the segments they target, it is also useful in helping close gaps and guide architectures. In this session, ATT&CK will help define security policy and architecture needs. Participants will see how ATT&CK accelerates threat modeling for any environment, informs development and build-out, and closes gaps based on their threat picture. The session will also show how you can use open-source tools to test elements of your security architecture against ATT&CK’s knowledge base.

 


 

 

 

Bookings

Bookings are closed for this event.