2 Analyzing Your Environment for Potential Pitfalls

This chapter will discuss techniques for critically reviewing your processes, coverage, and systems, and provide advice on potential problem areas. By doing this, you will be able to directly apply it to your environments to look for areas of improvement and avoid any pitfalls, and it will be helpful when looking to implement the ATT&CK framework.

In this chapter, we will cover the following topics:

Danger! Risks ahead – how to establish a risk registry
Red and blue make purple – how to run purple team exercises
Discussing common coverage gaps and security shortfalls

Technical requirements

No installations or specific technologies are required for this chapter.

Danger! Risks ahead – how to ...

Get Aligning Security Operations with the MITRE ATT&CK Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Aligning Security Operations with the MITRE ATT&CK Framework by Rebecca Blair

2

Analyzing Your Environment for Potential Pitfalls

Technical requirements

Danger! Risks ahead – how to ...

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly