Speakers
Synopsis
Improving cyber resilience using industry frameworks can often be a daunting task, especially when the process of determining risk ratings relies on subjective assessments of likelihood, and a lack of transparency regarding initial access, root cause and detailed insights into the TTPs used by Threat Actors in successful cyber incidents. McGrathNicol has undertaken a research project to map TTPs from 75 recent cyber incidents against the NIST framework to provide threat based patterns for control uplift, including Business Email Compromise, Ransomware attacks, and Insider Threat related risk.
Attendees will hear 3 examples of recent incidents and see how the tactics, techniques and procedures have been mapped to the NIST framework, with a focus on whether identified controls help reduce the likelihood or impact of a threat.
