11:05 AM - 11:35 AM (PDT)
Putting MITRE ATT&CK into Practice: The “MAD” Certification Process

For years in cybersecurity, security teams lacked clarity about adversary tactics, techniques, and procedures and as a result, defenders stumbled in the dark as they tried in vain to defend their data. The result resembled swiss cheese: everyone from the financial sector to the U.S. military to healthcare companies were pummeled by cybercriminals and nation-states alike. In 2015, this changed with the publication of the MITRE ATT&CK framework. ATT&CK is a periodic table of adversary behaviors and threat intelligence; it gives defenders all over the world a single repository to drive-up security effectiveness by focusing on known threats. Now the ATT&CK team is training the world on how to make the framework operational. In this session, please join Chriss Knisley, General Manager of MITRE ATT&CK Defender™(MAD), and Steve Luke, Director of Content for MITRE ATT&CK Defender, as they talk about the evolution of MITRE ATT&CK and MITRE ATT&CK Defender's – “MAD” – certification. Produced by MITRE’s own ATT&CK experts, MAD certified defenders learn directly from the masters to apply ATT&CK across disciplines for threat-informed defense operations.