YoVDO

The SOC Counter ATT&CK

Offered By: NorthSec via YouTube

Tags

NorthSec Courses Cybersecurity Courses Threat Detection Courses Threat Modeling Courses Threat Hunting Courses

Course Description

Overview

Explore the world of Security Operations Center (SOC) and its relationship with the MITRE ATT&CK framework in this 30-minute conference talk by Mathieu Saulnier at NorthSec 2019. Delve into the history of attacks, the ATT&CK framework, and its Navigator tool. Learn about scoring methodologies, threat detection reporting, and threat modeling techniques. Discover how to leverage the ATT&CK matrix for key performance indicators and explore tools like Sigma, ModularOS Query, and Red Canary for threat hunting and red team automation. Gain valuable insights from a seasoned security professional with extensive experience in SOC implementation, detection, and mentorship across major Canadian institutions.

Syllabus

Intro
History of Attack
Attack Framework
Attack Navigator
Scoring
Weight
Points
Threat Detection Report
Threat Modeling
Matrix and KPI
Sigma
Modular
OS Query
Tread Hunting
Red Canary
Atomic Friday
RedTeam Automation
Commercial
Key takeaways
Thank you


Taught by

NorthSec

Related Courses

Windows Server 2016 Security Features
Microsoft via edX Detecting and Mitigating Cyber Threats and Attacks
University of Colorado System via Coursera Threat Detection: Planning for a Secure Enterprise
Microsoft via edX Microsoft Professional Capstone : Cybersecurity
Microsoft via edX Cyber Security Operations (Cisco CCNA)
The Open University via FutureLearn