"Three Ways MITRE ATT&CK Can Improve Your Organizational Security"
Ganesh Pai, the CEO of the security analytics company Uptycs, has outlined the different ways in which MITRE ATT&CK can help organizations improve their security. MITRE ATT&CK is an objective, third-party standard that security leaders and practitioners can use to evaluate their detection coverage and EDR (Endpoint Detection and Response) solutions. The standard was built using real-world observations, thus providing greater insight into attacker techniques. It allows red teams to reproduce the behavior of different threat groups. ATT&CK also covers the post-compromise lateral movement overlooked by the Cyber Kill Chain, which helps in the design of capabilities to detect attackers who have penetrated perimeter defenses as well as insider threats who are abusing legitimate credentials. This article continues to discuss how organizations can effectively apply MITRE ATT&CK.
Help Net Security reports "Three Ways MITRE ATT&CK Can Improve Your Organizational Security"