Overview
Explore how defenders can effectively leverage the MITRE ATT&CK framework in this 25-minute conference talk from BSidesCharm 2024. Learn practical approaches to translate adversary perspectives into actionable defensive strategies, develop targeted analytics, identify security gaps, and enhance SOC maturity. Principal Cybersecurity Engineer Lex Crumpton, drawing from extensive experience in security operations, exploitation development, threat hunting, and malware analysis at MITRE Corporation, demonstrates concrete methods for implementing ATT&CK in defensive operations. Gain insights into creating defensive solutions that are accessible to everyday users while understanding how to apply the framework for threat detection and protection. The presentation combines technical expertise with practical applications, making complex security concepts approachable for security professionals seeking to strengthen their defensive capabilities.
Syllabus
BSidesCharm 2024 - Defenders can use ATT&CK! Oh really? - Lex Crumpton
Taught by
BSidesCharm