Many organizations strive to build an intelligence-led security program, but aligning to a single, effective intel model is often an obstacle. Divergent processes across different parts of the security organization often lead to gaps in communication. Target’s Cyber Intelligence Team has developed a new approach that eases cross-team collaboration. In this talk, we will introduce the Workflow for Adversary Verification & Evaluation (WAVE) Matrix, a multi-disciplinary threat model that organizes tactics, techniques, and procedures in a new way to simplify communication and improve understanding across security functions. Target has used WAVE to dramatically increase the amount of intelligence developed into custom detection. Learn about the birth of the WAVE Matrix, how Target increased its active ransomware coverage by 700%, and how to implement this process in your organization to create massive cross-team security wins.Kelsey Helms, Lead Cyber Threat Intelligence Analyst, Target
Nate Icart, Lead Threat Intelligence Detection Engineer, Target Corporation
View upcoming Summits:
Download the presentation slides (SANS account required) at
#CTISummit #cyberthreatintelligence
Музыка
Фильмы
ТВ Шоу
Категории видео
