B4. Hunting for Cyber Threats Using Threat Modeling and Frameworks
Wednesday, May 9, 2018
11:15 AM - 12:15 PM
This session will present a methodology for pairing proven industry frameworks with threat modeling practices to quickly detect and respond to cyber threats. With threat models, an organization can slice its infrastructure into smaller components, making it easier to secure assets and minimize the attack surface. Attendees will learn how to make the most out of threat intelligence feeds, report on progress, and negotiate trust relationships in the intelligence sharing cycle, while improving their organization's overall security posture.
After completing this session, learner will:
- Understand the fundamentals and methodologies of threat modeling
- Learn how to make threat intelligence actionable, reduce "noise," and map attackers' behavior to proper security controls
- Learn how to measure threat-sharing effectiveness and report on progress
- Learn how to negotiate trust relationships in the intelligence sharing cycle
Travis Smith is a Principal Security Researcher for Tripwire, based in Portland, Oregon, where he specializes in integrating various technologies and processes with the goal of helping customers identify and mitigate real threats. Travis has presented his research at conferences around the world including Black Hat, SecTor, and InfoSec Europe.