Building and prioritizing detection engineering backlogs with MITRE ATT&CK

Presented by

Andrey Tamoykin, Kaspersky SOC Consulting

About this talk

Security Operations Centers (SOCs) have long recognized the critical need for building effective detection techniques. In this webinar, Andrey Tamoykin, an expert at Kaspersky SOC Consulting will explain how to develop and prioritize a detection backlog from scratch using the MITRE ATT&CK framework. We will explore various open-source tools to automate and streamline this process, providing practical insights and solutions to common challenges in detection engineering. This session will also cover key SOC development aspects driven by an optimized detection backlog. Who will benefit from this webinar? - SOC Managers - Security Monitoring Team Leads - Detection Engineers - SOC Researchers - SIEM Analysts Join our webinar to enhance your detection capabilities and ensure your SOC stays ahead of evolving threats with actionable strategies and tools.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (258)
Subscribers (60172)
On this channel, Kaspersky experts share their knowledge and key insights into high-fidelity threat hunting and intelligence, incident management, malware analysis, reverse engineering, security solutions, and several other vital aspects of the cyberworld. To keep you up to date, the experts also provide detailed webinars and workshops on how Kaspersky security solutions and services can halt and prevent a vast range of malicious attacks conducted by cybercriminals. Kaspersky is a global cybersecurity and digital privacy company that has been providing protection for 25 years, with over 400 million users from more than 200 countries. Kaspersky experts' mission is to help you find the perfect weapon to protect against any cyberthreat, carried out by even the most sophisticated cybercriminals. Kaspersky researchers are top-notch cybersecurity and protection technology experts, who regularly take part in leading information security events worldwide as best-in-class speakers. Kaspersky’s deep threat intelligence and security expertise is constantly being transformed into innovative security solutions and services that protect businesses, critical infrastructure, governments and consumers around the globe. Subscribe and learn more about the latest cybersecurity discoveries on the threat landscape and how to defend against them. Contact us at