This talk aims to provide the process for taking ATT&CK from a theoretical framework into actionable capabilities in an organization. With over 200+ techniques, many get bogged down with the challenge of where to start, the direction to head in, and what to test. We'll discuss pairing ATT&CK testing with threat intelligence, as well as mapping out detection risk based on ATT&CK assessments for a prioritized approach to ATT&CK implementation.
Audience: Information Security practitioners with technical knowledge