Beginning the Cyber Security analysis on the right foot is crucial. Else you quickly loose focus and waste all your time.

Security Operations need a holistic approach to analyze known Threat Scenarios with better CTI – strategic & tactical – and better data collection sources.

A sophisticated Threat Intelligence capability can provide real facts, context and inform an organization on the MITRE ATT&CK tactics and techniques on which to focus.

Security Operations and DFIR

SOC, SOAR, Threat Hunting, SANS 6-step IR, The Diamond Model of Intrusion Analysis, Cyber Threat Intelligence, MaGMa Use Case Framework

Improve your SOC: SOAR or Threat Hunting or both?

June 23, 2020

Based on the sophistication and constant change of the threat landscape in the cyber space, many mature organizations have identified the necessity to improve the detection, analysis and response capabilities of their Security Operation Center (SOC). Currently, security analysts are often engaged with trivial copy-paste or other annoying low-level tasks rather than gaining a deep understanding...

Beginning the Cyber Security analysis on the right foot is crucial. Else you quickly loose focus and waste all your time.

Security Operations need a holistic approach to analyze known Threat Scenarios with better CTI – strategic & tactical – and better data collection sources.

A sophisticated Threat Intelligence capability can provide real facts, context and inform an organization on the MITRE ATT&CK tactics and techniques on which to focus.

Security Operations and DFIR

Improve your SOC: SOAR or Threat Hunting or both?

Blog archive

Rukhsar's recent GCFA Gold paper