Understanding the Discipline to Optimize Cyber Defense Collaboration

Explore the evolving role of Cyber Threat Intelligence (CTI) analysts and their impact on organizational cybersecurity in this 53-minute conference talk from BruCON Security Conference. Delve into the Mandiant CTI Analyst Core Competencies Framework, which outlines essential knowledge, skills, and abilities for effective risk reduction. Discover the significant overlaps between CTI analysts and other cybersecurity disciplines as defined by NIST SP 800-181, learning how to optimize collaboration among threat hunters, incident responders, and red teamers. Examine the framework's four pillars: Problem Solving, Professional Effectiveness, Technical Literacy, and Cyber Threat Proficiency, with a focus on leveraging adversary knowledge for improved security testing. Gain insights on using this framework to develop CTI programs, ensure proper skill coverage, and inform training and hiring decisions for enhanced organizational cyber defense.

11 - BruCON 0x0E - Understanding the Discipline to Optimize Cyber Defense Collaboration - John Doyle