Cybersecurity teams face an overwhelming and rapidly expanding landscape of threats. Two very useful tools have been established to help confront them:
MITRE ATT&CK framework and knowledge base.
Breach and Attack Simulation (BAS) solutions.
First, a look at some of the most pressing security challenges:
How can we communicate within the cyber community in common terms?
Can our security operations function and perform at the same speed as our adversaries?
How can we validate our security posture effectively against TTPs to report to various stakeholders?
What are the best practices for prioritizing the long list of security gaps based on the business risk?