0      0

(ISC)2 Security Congress 2022

2101757 - Taking a threat-centric approach to building cyber resiliency


Oct 12, 2022 10:15am ‐ Oct 12, 2022 11:15am


Description

Checklist-driven approaches often prove insufficient in defending organizations against cyber threats. Cyberattacks are not linear. Instead, a threat actor can take numerous attack paths within a compromised environment and adjust their strategy to bypass security controls. As a result, to minimize the risk of a successful cyberattack, we need to understand threats and build cyber resiliency from the perspective of a threat actor. In this talk, we will present a pragmatic methodology to building cyber resiliency from the perspective of a threat actor. The presenter developed this approach during countless breach investigations and remediation consulting engagements. Learn about a battlefield-tested strategy to minimize the risk of a successful cyberattack.

Learning Objectives:
  • Understand the concept of threat-centric cyber resiliency and why it is important in the age of prolific cybercrime.
  • Understand how a threat-centric approach can help identify security weaknesses and unknown risks.
  • Understand how identifying and reducing attack surface around common exploitation areas can enhance an organization's cyber resiliency.

Speaker(s):

You must be logged in and own this session in order to post comments.