MITRE has become the common language of EDR and is the de facto way to evaluate a product’s ability to provide actionable information to the SOC.
For three years now, MITRE Engenuity has conducted independent evaluations of cybersecurity products to help the industry and government institutions make better decisions to combat security threats and improve their threat detection capabilities. Leveraging the ATT&CK framework, evaluations assess various vendors on their ability to automatically detect and respond to real-life cyberattacks within the context of the ATT&CK framework.
The results indicate a solution’s ability to provide security analysts a quick, clear picture of how an attack unfolded. Participating vendors are measured on their ability to detect and address real-world threats through the language and structure of the ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) Framework.
SentinelOne remains a steadfast supporter of MITRE Engenuity’s objective approach. They are indeed a catalyst for cybersecurity innovation not only in the vendor community but also within 1000’s of organizations that now use ATT&CK as a common lexicon for understanding who the adversaries are and their typical game plans.
ATT&CK helps the industry clearly communicate the exact nature of threats and makes it clear how to enhance defenses to blunt the impact. Overall, ATT&CK serves as a flexible model and invaluable tool for applying intelligence to cybersecurity operations.
Download the whitepaper now, to find out more.