6 Strategies to Map to ATT&CK

In this chapter, we’ll discuss how to analyze your environment, identify coverage gaps, and how to identify areas for improvement. Then, we’ll cover how to map those gaps to the ATT&CK Framework to increase coverage and build out maturity in your security posture.

This chapter covers the following topics:

Finding the gaps in your coverage
Prioritization of efforts to increase efficiency
Examples of mappings in real environments

Technical requirements

For this specific chapter, there is no specific technology or installations that are required.

Finding the gaps in your coverage

It’s not logical to think that you can immediately review any/all controls from the MITRE ATT&CK Framework. Doing so will not only create ...

Get Aligning Security Operations with the MITRE ATT&CK Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Aligning Security Operations with the MITRE ATT&CK Framework by Rebecca Blair

6

Strategies to Map to ATT&CK

Technical requirements

Finding the gaps in your coverage

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly