Elevating Cybersecurity Performance
In an increasingly complex world, security teams struggle over how best to improve their program performance. Even after decades of investment in the best technologies and teams, intruders keep breaking past and having an impact. Why? Just like a World Cup soccer team, security teams need to train and prepare for their opponents. Today, they don’t do so enough. There is a path for elevating cybersecurity performance, however, and it begins by focusing on what we know. Practically, we know adversaries use the same time-honored tactics, techniques, and procedures, over and over, to achieve their strategic objectives. That’s why the MITRE ATT&CK framework is so useful as a period table of known behaviors. It is why we believe in a purple team defensive construct. And it is why we gather at the Purple Hats Conference: to prepare for the challenges we face, to share lessons derived from wisdom and experience, and to make the world a safer place. Join AttackIQ CEO Brett Galloway in exploring these and other issues in his opening address.
Challenges in Cybersecurity and Cyberspace Operations: A Conversation with Jen Easterly and Dr. Richard Danzig
What are the key challenges in cybersecurity and cyberspace operations today, and how can the U.S. government best respond? Listen to two of the United States’ most important thinkers and leaders in cybersecurity and technology, Jen Easterly, Director of the U.S. Cybersecurity and Infrastructure Security Agency (CISA) in conversation with Dr. Richard Danzig, Senior Fellow at Johns Hopkins Applied Research Laboratory and former U.S. Secretary of the Navy.