Using MITRE ATT&CK in the Cloud: TTPs, Tools, and Trajectory

June 9, 2020

Join our webinar for insight into the MITRE ATT&CK framework. Our team uses this framework extensively in on-premise infrastructure testing and during purple team exercises to test security controls. We'll discuss how this framework is used to detect and respond to known Tactics, Techniques, and Procedures (TTPs). We will also review the MITRE ATT&CK Cloud matrix’s current level of maturity and assess where it’s headed. In addition, we will discuss the tools we leverage and how we augment them to interact with this matrix. We will explore the following topics: - Which TTPs are reflected in current cloud controls? Should you align your overall cloud security program, and if so, how? - Do the TTPs properly and accurately account for the overall kill chain in a cloud environment? Is there redundancy with other TTPs in different matrices? Should additional TTPs be added? - What does all of this mean to you and your business?

Previous Article
Evolving Threat Modeling to fit DevOps | Speakers: Ruth G. Lennon & Altaz Valani
Evolving Threat Modeling to fit DevOps | Speakers: Ruth G. Lennon & Altaz Valani

July 9th, Thursday; 11:00 a.m. (EST)

Next Video
The Business Value of Security in DevSecOps
The Business Value of Security in DevSecOps

Security measures in DevSecOps are sometimes seen as impediments to speed. The sole focus on security tools...