Time
9:45 AM - 10:26 AM (PDT)
Name
Using DeTTECT and the MITRE ATT&CK Framework to Assess Your Security Posture | What We Can Learn from Ransomware (And How to Learn It Without the Threat of Financial Ruin)
Description

Using DeTTECT and the MITRE ATT&CK Framework to Assess Your Security Posture with David Branscome, Global Enablement Lead for Security, Compliance and Identity, Microsoft

Are you capturing the right logs? Are your logs complete? Would you be able to detect the next Solorigate attack? These questions may keep you awake at night. But using DeTT&CT and the MITRE ATT&CK Framework can help you understand where you need to shore up your logging. Let me show you how!

In this session, we'll discuss why the ATT&CK Framework is important for threat detection. Then we'll dig into how you can use DeTTECT to identify the areas of your environment where your logging may not be comprehensive enough to catch the threats in ATT&CK. It's a fun exercise and very visual. Best of all, I'll walk you through the steps you'll need to perform to set this up on your own.

 

What We Can Learn from Ransomware (And How to Learn It Without the Threat of Financial Ruin) with Kellyn Wagner Ramsdell, Senior Cyber Intelligence Analyst, MITRE Corporation

Ransomware can have a net positive impact on victimized organizations because it often teaches victims more about their organization than any single exercise or artificial stress test. Our knowledge of ransomware presents an opportunity to learn these lessons without the threat of financial ruin. This presentation will talk about the effects of ransomware and how we can gain the positive impacts without the devastating attacks. MITRE Public Release Case Number 22-106