ATT&CK™ and D3FEND™: Incorporating Frameworks into Your Analysis & Intelligence

Logo
Presented by

Matt Bromiley, Principal Incident Response Consultant | Chase Snyder, Sr. Product Marketing Manager

About this talk

For many years, organizations have relied on the MITRE ATT&CK™ framework as a valuable resource to catalog adversary tactics and techniques. The information security community has leveraged ATT&CK to help guide investigations, write robust detections, and enrich threat intelligence. In June 2021, a cooperation between the National Security Agency (NSA) and MITRE released D3FEND, a complementary framework that provides insight into defensive measures for enterprise defense. This webcast will explore: How to leverage D3FEND to enhance enterprise security defenses How to utilize ATT&CK and D3FEND together to detect and counter attacker tactics and techniques How to incorporate D3FEND countermeasures into your daily *DR workflows How the security community can give back and make D3FEND even better
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (131)
Subscribers (11587)
The prevention and protection model of cybersecurity isn’t working: between the cloud, IoT, and the sheer pace of change, the enterprise is no longer built to be walled in. This channel provides educational webinars to help SecOps (SOC) and NetOps (NOC) teams, from CIOs and CISOs to analysts and practitioners, change their perspective in order to identify, investigate, and respond to threats across the modern attack surface. We explore how cloud-native network detection and response (NDR) provides the complete visibility, real-time threat detection, and intelligent response you need to secure your hybrid environment. You’ll also find product information about ExtraHop Reveal(x) which enables you to: Eliminate blind spots: Cover 100% of your hybrid environment, Detect what matters: Find threats 95% faster, and Act quickly: Respond to breaches 70% faster. Learn more at www.extrahop.com