Source |
McAfee Labs |
Identifiant |
2836364 |
Date de publication |
2021-05-25 15:00:09 (vue: 2021-05-25 17:05:13) |
Titre |
Alert Actionability In Plain English From a Practitioner |
Texte |
In response to the latest MITRE Engenuity ATT&CK® Evaluation 3, McAfee noted five capabilities that are must-haves for Sec Ops and displayed in the evaluation. This blog will speak to the alert actionability capability which is essential. This critical ability to react in the fastest possible way, as early as possible on the attack chain, while correlating, aggregating and summarizing all subsequent activity while reducing alert fatigue to allow Sec Ops to uphold efficient actionability. As a Sec Ops practitioner and former analyst, I can remember […]
|
Envoyé |
Oui |
Condensat |
actionability activity while alert all analyst are attack blog can capabilities that capability which chain correlating displayed in early english evaluation evaluation 3 fastest fatigue to allow sec five former for sec from haves is essential latest mitre engenuity att&ck® must ops and ops practitioner ops to uphold efficient actionability plain possible practitioner react reducing remember response sec subsequent summarizing the alert actionability this critical ability to way will speak aggregating and as a mcafee noted this |
Tags |
|
Stories |
|
Notes |
|
Move |
|