How to improve threat detection and response with the MITRE ATT&CK™ framework

Logo
Presented by

Tawnya Lancaster, Sr Product Marketing Manager & Aaron Genereaux, Sales Engineer; AT&T Cybersecurity

About this talk

The speed and sophistication with which cybercriminals are launching attacks is increasing year-over-year. In fact, a recent 2019 threat report showed that the time from initial compromise of a network by an adversary to lateral movement can be as little as 19 minutes.* This is challenging threat detection and incident response teams to keep up — especially as cybercriminals are also continuously changing their methods. To drive more resilient threat detection and response, defenders need to incorporate threat intelligence and threat detection frameworks that look beyond simple indicators of compromise (IOCs) to protect their network and speed response. Join us in discussing: - What MITRE ATT&CK™ is and how it complements other cyber frameworks such as NIST and the Cyber Kill Chain - How AT&T Alien Labs maps correlation rules to the tactics and techniques of MITRE ATT&CK™ so customers can better understand the context and scope of an attack - How to detect, investigate, and respond to a multi-vector attack (TrickBot) using USM Anywhere and the MITRE ATT&CK™ — within one dashboard *2019 Global Threat Report, Adversary Tradecraft and the Importance of Speed. CrowdStrike, 2019.
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (10)
Subscribers (76151)
Welcome to LevelBlue (formerly AT&T Cybersecurity). We simplify cybersecurity through award-winning managed security services, experienced strategic consulting, threat intelligence and renowned research. Our team is a seamless extension of yours, providing transparency and visibility into security posture and continuously working to strengthen it. We harness security data from numerous sources and enrich it with artificial intelligence to deliver real-time threat intelligence. This enables more accurate and precise decision making. With a large, always-on global presence, LevelBlue sets the standard for cybersecurity today and tomorrow. We easily and effectively manage risk, so you can focus on your business. LevelBlue. Cybersecurity. Simplified.