Preventive security controls are insufficient to protect an organization effectively. They have to work in tandem with detection, threat hunting, and incident response capabilities.
Companies that take a proactive stance to defend their critical assets rely on the people, processes, and technologies that go into their SOC to detect and thwart malicious activity.
This creates the demand for ongoing optimization in the face of a dynamic threat landscape.
Attend this session to learn:
· How to apply MITRE ATT&CK in the detection development process
· How to develop and validate detections in an environment that lacks homogeneity
· How to leverage automation and build a continuous program of SOC validation