Abstract
Purposeful security outcomes consisting of visibility, detection, prevention, and response are the fundamental value propositions of any security program. However, knowing how to establish/extend these capabilities can be daunting for both new and existing environments. In this conversation, Carlos Diaz (Principal Engineer at Cisco Engineering) will present meaningful and practical approaches on how to rationalize through the prioritization challenges of security outcomes using the MITRE ATT&CK enterprise matrix and his open-cost tool #MitreAssistant. Carlos will demonstrate how professionals can tackle several vulnerabilities from the OWASP TOP 10, like Broken Access Control and establish passive and active countermeasures in critical systems.
This conversation benefits security audiences of all levels.
Speaker Profile
Carlos is a CISCO Secure Principal Engineer focusing on defensive countermeasures, large scale information management and security visibility of technologies to represent the core outcomes of SOC detection, investigation and response.
Before joining CISCO, Carlos built, operated and transferred SOC programs in critical sector clients where he focused on the engineering of distributed computing systems with an emphasis on scalable digital forensics and incident response capabilities fused with commercial and open-source technologies. Carlos has 22 years of extensive expertise spanning across public and private sector assignments including Google, McAfee, and Defense industry.
Carlos specializes in the practical incorporation of cyber tactics and information security frameworks into high stress and dynamic environments.
Project Overview: docs-ma.vercel...