Aligning the Modern SIEM with MITRE ATT&CK

Logo
Presented by

Kyle Champlin, Splunk Inc. | Ryan Kovar, Splunk Inc. | John Wunder, MITRE | Matt Valites, Cisco Talos

About this talk

Although MITRE ATT&CK is famous for making security analyst's lives easier, there is sometimes a learning curve to a company adopting the MITRE ATT&CK framework and implementing it into their SIEM. Join SIEM experts from the MITRE ATT&CK team, Cisco Talos Group, and Splunk to discuss the challenges (and solutions!) with using MITRE ATT&CK with a modern SIEM. Join us in this webinar to learn: - How security teams can derive value from using MITRE ATT&CK with a SIEM - Common issues organizations run into and guidance on how to improve security posture - How to supercharge your SIEM with MITRE ATT&CK and use it to your advantage - ATT&CKing your SIEM rules: how to map taxonomies and the difficulties you might face - Planning your defenses with Matrices
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (286)
Subscribers (38790)
Splunk helps make organizations more resilient. Leading organizations use our unified security and observability platform to keep their digital systems secure and reliable. Organizations trust Splunk to prevent security, infrastructure, and application issues from becoming major incidents, absorb shocks from digital disruptions and accelerate digital transformation.