Three ways MITRE ATT&CK can improve your organizational security

2021-02-08 06:10

There's a good reason everyone's talking about MITRE ATT&CK: it's an objective, third-party standard with which organizations can measure their own detection coverage, as well as the coverage provided by EDR solutions.

Still, even while you appreciate ATT&CK, it's not always clear how you can use it to improve your own organizational security.

MITRE ATT&CK has replaced Lockheed Martin's Cyber Kill Chain as the favored framework for understanding attacker behavior.

Hone your threat model with MITRE ATT&CK. You can use the framework to understand the modus operandi of the threat groups most likely to target your organization.

MITRE ATT&CK can also be used to speed up your analyst workflows, providing richer context around detections.

As MITRE ATT&CK gains more prominence in the cybersecurity industry, it's important to know how to best put it to use in your organization.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/0_SoYui1Fzw/

#mitre #security

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Mitre		3	1	10	1	2	14