Using MITRE ATT&CK in the Cloud: TTPs, Tools, and Trajectory

June 9, 2020

Join our webinar for insight into the MITRE ATT&CK framework. Our team uses this framework extensively in on-premise infrastructure testing and during purple team exercises to test security controls. We'll discuss how this framework is used to detect and respond to known Tactics, Techniques, and Procedures (TTPs). We will also review the MITRE ATT&CK Cloud matrix’s current level of maturity and assess where it’s headed. In addition, we will discuss the tools we leverage and how we augment them to interact with this matrix. We will explore the following topics: - Which TTPs are reflected in current cloud controls? Should you align your overall cloud security program, and if so, how? - Do the TTPs properly and accurately account for the overall kill chain in a cloud environment? Is there redundancy with other TTPs in different matrices? Should additional TTPs be added? - What does all of this mean to you and your business?

Previous Article
Evolving Threat Modeling to fit DevOps | Speakers: Ruth G. Lennon & Altaz Valani
Evolving Threat Modeling to fit DevOps | Speakers: Ruth G. Lennon & Altaz Valani

July 9th, Thursday; 11:00 a.m. (EST)

Next Article
How to Assess the Business Value of Security in Software Development?
How to Assess the Business Value of Security in Software Development?

Most discussions focus on the tactical benefits of security in software development. It would be easier to ...

Find out how our solution builds security and compliance into software.

Get a Free Demo