Name: How to maximize Microsoft Defender ATP configuration using Attack Simulations
Start: 2020-08-18T17:00:00Z
End: 2020-08-18T17:00:32.000Z
Location: BrightTALK
Rating: 3.2

SafeBreach is a leader in breach and attack simulation. The company’s groundbreaking patented platform provides a “hacker’s view” of an enterprise’s security posture to proactively predict attacks, validate security controls and improve security operations center (SOC) analyst response. SafeBreach automatically executes thousands of breach methods from its extensive and growing Hacker’s Playbook™ of research and real-world investigative data.

As threat groups continue to innovate and execute increasingly sophisticated attacks, there is a growing need for organizations to understand their level of risk against these advanced threats and to implement a proactive approach to defending themselves. This approach can help organizations understand existing threats, benchmark preparedness, test security controls, and unify stakeholders, all in the name of playing offense rather than defense. The SafeBreach platform can help fight advanced malware threats by allowing organizations to proactively understand their risk, make informed decisions, and prioritize improvement efforts and resources that will make the biggest impact in protecting their environment.

Learn More About: 
- How SafeBreach platform can help organizations test their defenses against advanced attacks
   - How SafeBreach can help organizations visualize exposures against advanced threats
   - How to prioritize threats based on their actual risk to the business
   - How to successfully mitigate advanced threats and ensure a hardened security posture

Dissecting the Anatomy of an Advanced Malware Attack With SafeBreach BAS

Modern enterprise security is only increasing in complexity. Security teams rely on multiple security controls, cybersecurity frameworks, and threat intelligence feeds to secure organizations against a range of rapidly evolving threats. However, security controls drift over time and create security gaps, attack frameworks can be complicated to operationalize, and threat intelligence feeds can generate a lot of noise. Pay attention - Breach and Attack Simulation (BAS) tools can help! According to Gartner, BAS tools provide organizations with a host of benefits, including - evaluating the efficacy of your security controls, identifying likely attacker paths, and improving the overall maturity of defenses.  

SafeBreach experts will discuss:
 - How SafeBreach can help you optimize your organizational security posture
 - How to leverage and operationalize the MITRE ATT&CK framework
 - How to empower your analysts to customize and execute attacks using threat intelligence they trust
 - How to reduce MTTD and MTTR by leveraging SafeBreach’s actionable insights across our robust technology integration ecosystem

Improving SOC Effectiveness with MITRE ATT&CK and Threat Intelligence

How effective are your cloud security controls? 

In this webinar,  Yotam Ben Ezra, SafeBreach VP Product, and featured speaker Andras Cser, Forrester Vice President and Principal Analyst, will discuss cloud threat trends, security tool innovation and how security leaders can proactively assess and optimize cloud security posture.

Join us and: 
   -   Understand the cloud threats and attacks you must defend against 
   -   Learn how cloud security tools protect your cloud infrastructure
   -   Learn from SafeBreach how to proactively assess and optimize your cloud security posture with Breach and Attack Simulation

Assess and Optimize Your Cloud Security Posture at the Speed of Digital Business

The importance of being prepared for breaches grows with the constant evolutionary nature of costly cybersecurity attacks. According to the latest research from Enterprise Security Group (ESG), a vast majority of the organizations believe that they follow best practices for security hygiene and posture management, but only 47% consider security control testing a best practice for ongoing risk and posture assessment. The increasing complexity of the modern security stack only compounds this challenge as vulnerabilities in each security control open up a potential new opportunity for an attacker to breach the organization.

Jon Oltsik, Senior Principal Analyst and Fellow at ESG, and Yotam Ben Ezra, VP of Products at SafeBreach:

   - Highlight some of the posture management challenges faced by organizations today
   - Discuss how the external attack surface is growing and is increasingly vulnerable to exploitation
   - Highlight why vulnerability management programs have room for improvement
   - Call out the importance of continuous security testing
   - Highlight the role of Breach and Attack Simulation (BAS) in effective posture management

Tackling Challenges of Security Posture Management with BAS Solutions

Digital transformation offers enterprises several advantages, including improved agility, reduced capital expenses, and enhanced flexibility. However, if a cloud data breach occurs, it can take upwards of 252 days to detect and contain it. While cloud providers offer a range of security capabilities and multiple layers of defenses -  there are still risks, and security teams must have the visibility they need to identify threats proactively. 
Join us on October 19, 2021, to learn how to proactively protect your organization against the latest and most pernicious threats through Breach and Attack Simulation (BAS). We’ll also discuss: 
**Ways to overcome challenges with securing your cloud deployment
**How Breach and Attack Simulation can validate prevention and detection abilities for your existing network security and cloud controls
**Ways to gather actionable insights and speed up the process of investigations and remediation for attacks targeting cloud infrastructure 
**What’s next on the threat horizon

We will also show you how running attacks from our Hacker’s Playbook against your organization’s security stack can help you optimize your configurations, investments, and reporting.

Protecting Your Enterprise from Evolving Cloud Threats

See for yourself how mapping attack simulations against MITRE ATT&CK and NIST 800-53 and modeling for cyber adversary behavior can help your team organize and prioritize your investigation and remediation efforts on an ongoing basis. We'll also share the latest content updates in the platform related to the new MITRE V9 release.

SafeBreach May Demo Webinar: Operationalizing MITRE ATT&CK & NIST 800-53

When nation-state actors and organized cybercriminals began sophisticated attacks in mid-2020 against the supply chain for COVID vaccines, IBM X-Force warned governments and healthcare entities of the danger. These were not merely isolated attacks against HVAC suppliers. The attacks began even before Pfizer or Moderna had authorization, involved spoofing of legitimate healthcare executives, and aimed at stealing vaccines and sabotaging their delivery while undermining governmental credibility. What happened behind the scenes is an intriguing use of quantitative frameworks in combination with breach and attack simulation (BAS) to confront a multi-faceted global attack. 

In this session Colin and Itzik will discuss:

-The highly sophisticated COVID Cold Chain attacks
-The quantitative framework we used to assess the gravity of the threats 
-What made this an outlier threat, and why we informed customers that it’s quantifiably more dangerous than other COVID-focused attacks. 
-How we leveraged automated breach and attack simulation to identify the attacks and determine what remediations were necessary and validate them once they were carried out, ensuring they would be effective in blocking attacks.
-How to run a comprehensive threat analysis program to block attacks targeting healthcare and COVID-facing organizations.
-Ways to automate remediation steps based on risk metrics and then continuously tune threat intelligence and vulnerability engines to progressively improve security posture and drive risk down.

How to Identify, Quantify, and Remediate Attacks on the COVID Vaccine Cold Chain

An effective security architecture requires insights into your organization's threat landscape, but many security professionals are disappointed in the results of their threat intelligence efforts. Learn how you can integrate threat intelligence with breach and attack simulation to quickly and effectively validate if your controls are configured properly to prevent or detect the latest attack that threatens your business to gain the most of your threat intelligence investment. Turn knowledge of the threat landscape into safe attacks that execute, at scale, across your infrastructure to identify the potential business impact and gain actionable remediation insights to close up security gaps to reduce your cyber risk. 

Join SafeBreach and guest Forrester for a webinar discussion to learn:
-The critical components of an effective threat intelligence program
-The benefits of an intelligence-driven security strategy
-How to operationalize Threat Intelligence with Breach and Attack Simulation
-The value of visualizing the performance of your security controls against the latest threats
-How data-driven visibility into your security posture can translate into a reduction of risk

How to Operationalize Threat Intelligence at Scale to Reduce Cyber Risk

Learn how to make more sense of your security data by visualizing it with SafeBreach Dashboards. 
In this webinar, we'll show you how our out-of-the-box and custom Dashboard features can help improve your security visibility, reporting, and your ability to share insights and data with other stakeholders and executives within your organization.

You'll hear from members of the SafeBreach Product team as they demonstrate common Dashboard use cases, show you the latest functionality, and answer your questions about how to get the most benefit from this critical capability.

How to Visualize Your Security Posture With SafeBreach Dashboards

Vulnerability scans generate a large list of high-priority patches and teams cannot keep up. To solve this, SafeBreach helps you correlate the scans with validating security controls to gain insight into which vulnerabilities are actually exploitable in your environment. Then prioritize remediation to focus on what matters first. The outcome: fewer resources spent, but stronger protection and reduced risk.

See How SafeBreach Helps You Identify & Prioritize Exploitable Vulnerabilities

Validate your cloud and container security by executing attacks that test your cloud control (CSPM) and data (CWPP) planes to ensure the security of your critical cloud operations. Identify the choke points of your cloud security and gain a holistic understanding of where your cloud policies and controls are failing across your IaaS, PaaS and Container environments.

See How SafeBreach Helps You Validate the Security of Critical Cloud Operations

In this video you'll learn how the largest playbook of attack simulations in the industry will help keep your organization safe against the latest threats. Our dedicated research team monitors the threat landscape, adds and updates attacks to ensure you have a comprehensive view of your organization's security posture against the current threat landscape.
Filter our Hacker's Playbook by threat types, threat groups,  MITRE TTPs, attack phases, security control category, and many others to test your security defenses, and ensure that red and blue teams get visibility into the performance of the security controls so you can take proactive action to close any gaps before an attacker can exploit them.

See How SafeBreach Helps Your Security Team Keep Pace with the Latest Threats

How many security controls are in your security stack? Get visibility into the performance of your security controls using the largest Hacker's Playbook in the industry. 
In this video, see how SafeBreach helps you justify your security investments, strengthen your defenses, and drive risk down with the industry's most robust security control validation. Test your security posture against the latest threats and threat groups to ensure you can identify and close any gaps before attackers do.

See How SafeBreach Helps Validate Your Security Controls and Reduce Cyber Risk

Learn about the unique value Breach and Attack Simulation can provide for Risk-Based Vulnerability Management. Members of the SafeBreach SE, Product, and SafeBreach Labs teams demonstrate how we help optimize your configurations, investments, and reporting within a matter of days.

SafeBreach March Demo Webinar: Risk-Based Vulnerability Management

Learn how you can test the efficacy of your security controls and gain insights into your security posture to help drive down risk with the SafeBreach Threat Assessment Dashboard.

SafeBreach Dashboards: Threat Assessment Dashboard Walk-Through

Learn how CISOs and security executives can use SafeBreach Dashboards to transform data into actionable visualizations in order to align security investments to business goals, drive business impact, validate your security controls, and reduce risk.

Introducing SafeBreach Dashboards: CISO Dashboard Walk-Through

New acquisitions may come with unrevealed security liabilities. With SafeBreach you can get an accurate, quantitative view of a target company's security posture by running a security baseline against their defenses with accuracy and speed. Then enable the right business decisions. Watch the video to learn more.

Mergers & Acquisitions Security Validation: An Explainer

The threat landscape constantly evolves and changes, forcing your team to shift focus in its search for security gaps. You need a platform in place that will help you proactively report to executives on your risk posture and get a mitigation plan in place before attackers can exploit the gaps. Learn more in this explainer video.

Threat Assessment: An Explainer

For security teams, it’s critical to validate the efficacy of endpoint security against leading threats in real-world scenarios. In the Microsoft Defender Advanced Threat Protection (ATP) evaluation lab, security practitioners can take advantage of a select set of breach and attack methods from the extensive SafeBreach Hackers Playbook (™). As a result, they can immediately and accurately test endpoint security capabilities against multiple real-life attack playbooks favored by very active Advanced Persistent Threat groups. 

In this webinar, security experts from both companies explain how the integration of SafeBreach and Microsoft Defender ATP evaluation lab works and how security teams can verify that their Microsoft Defender ATP configuration will be successful in blocking relevant attacks. 

You will learn:
- How breach and attack simulations identify security weaknesses that might allow malware infection, 
  credential theft, data collection, ransomware, modification of registry keys, and malicious OS 
  configurations
- How to use the Evaluation Lab / SafeBreach integration to build and run proofs of concept in a 
  virtual environment using real attack scenarios
- How to evaluate attack simulation results and make appropriate remediations
- How to explore the many other breach and attack methods in the SafeBreach Hacker's Playbook 
  (™), MITRE heat mapping and more.

How to maximize Microsoft Defender ATP configuration using Attack Simulations

Microsoft

Defender ATP

Cyber Security

Information Security

Security Risk

Endpoint Security

Threat Protection

Threat Defence

Cyber Attacks

mitre

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

The IT project management community on BrightTALK includes thousands of IT project and portfolio management professionals. Find relevant webinars and videos on agile methodologies, scrum strategy, project management processes and more. Attend live webinars or view on demand content presented by recognized thought leaders in the IT project management industry.

IT Project Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

The energy community on BrightTALK brings together top experts from around the world. Find relevant webinars and videos on renewable energy, efficiency and more presented by recognized energy management thought leaders. Join the conversation by participating in live webinars and round table discussions on energy trends.

Energy

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

The medical research community on BrightTALK brings together medical and research professionals. Find relevant webinars on medical research, laboratory science, continuing medical education and more presented by recognized medical researchers. Join the conversation by participating in live webinars and round table discussions on the latest in medical devices, medical research practices and trends in the healthcare industry.

Medical Research

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Health IT

Get powerful life science insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on strategies and initiatives to accelerate the transformation of U.S. and global health care from a volume- to value-based marketplace.

Life Sciences

Healthcare

The accounting and tax community on BrightTALK features relevant content around tools and strategies for tax planning, internal controls, auditing and more. Join the conversation by engaging with accounting and tax thought leaders and accountants and asking questions during live webinars and round table discussions on tax and auditing topics.

Accounting and Tax

Get powerful banking and treasury insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on hot topics such as digital banking, payments disruption and non-bank competition. Learn how the latest treasury management strategies are helping to mitigate operational, financial and reputational risk.

Banking and Treasury

Get powerful venture capital insights from influential investment experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge and understand market trends and investment opportunities.

Venture Capital

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Leadership styles are continually evolving to incorporate new ways of thinking about employee satisfaction, motivation and performance. Find webinars and videos on the strategies, techniques and qualities that make an effective leader. By participating in this community you will gain insight into current leadership theories and how to optimize employee performance.

Leadership

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

How to maximize Microsoft Defender ATP configuration using Attack Simulations

Presented by

About this talk

More from this channel