You can’t defend what you don’t understand, so understanding attackers’ motives and the techniques they use is critical. In this video interview with SANS, Fidelis Cybersecurity CCSO Craig Harber examines the importance of:
- Having holistic visibility and understanding your cyber terrain, including both managed and unmanaged assets, better than the adversary.
- Incorporating automation into your security stack, allowing security teams to scale proactive capabilities like detection and response, as well as implement predictive capabilities using machine learning and artificial intelligence, to automatically detect any anomalous activity on the network, determine the probability of compromise, automatically generate high-fidelity alerts and analyze metadata in search of the unknown.
- Leveraging cyber threat frameworks, such as MITRE ATT&CK™, DoDCAR, and others to understand attacker TTPs so that you can help detect and respond to attacks earlier in their lifecycle – prior to the point of impact.