CardinalOps, the detection posture management company, announced today that it contributed updates to the latest version of MITRE ATT&CK, a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.
“CardinalOps delivers the breadth of security coverage that we need to fix our detection gaps, resulting in a more secure environment and efficient security operations,” said Javier García Quintela, Global CISO of Repsol.
Read this complimentary report from Gartner® – Hype Cycle for Security Operations for 2023. Learn about Automated Security Control Assessment and how it can strengthen your security posture.
In our third annual report, CardinalOps set out to gain visibility into the current state of use case development and threat detection coverage in enterprise SOCs. We analyzed, aggregated and anonymized data from production SIEM
Enables financial services firm to operationalize MITRE ATT&CK with Splunk and eliminate detection coverage gaps based on organizational risk and priorities.
Join us on June 20 at 3:30 pm EDT for this SANS webinar. SecOps experts discuss major challenges for the modern Security Operations Center and how to operationalize MITRE ATT&CK to build a threat-informed defense.
Adversaries are hijacking corporate email systems such as Office 365 by abusing email transport rules. Learn how these sophisticated attacks work, plus how to detect them in Splunk, Microsoft Sentinel, IBM QRadar & Sumo Logic.
Based on analyzing thousands of detections, our research team has compiled the top 10 ways that SIEM rules break (silently) over time.
This research summary lists the top causes of noisy rules in your SIEM, followed by 5 best practices to help minimize noise.
Watch this 3-minute video to learn how CardinalOps continuously ensures you have the detections that matter most.