December 2, 2020 @ 1:00 pm - 3:00 pm EST
Operators of Industrial Control Systems (ICS) like those used in the electric power substations lack the capability for active defense of their systems from cyber adversaries. In this workshop MITRE will present their ATT&CK for ICS model with associated use cases of past and recent incidents.
Learning Objectives
- Learn how the ATT&CK for ICS framework can be used to tune your log analytics to reduce false positive alerts
- Learn to apply the framework to identify gaps in your event detection schemes, analytics and data collection.
- Gain practical expertise walking thru an incident management scenario to learn what is required to establish consistency in monitoring enterprise security capabilities.
About the Instructor
Otis Alexander
Cyber Security Engineer | Mitre Corporation
Otis Alexander joined the Mitre Corporation as a Cyber Security Engineer in 2014. He currently leads the development of the ICS ATT&CK model and focuses on the categorization and emulation of adversary behavior in cyber physical systems. Otis holds a BS and MS in Computer Science from the University of Washington.