![[Breakout #2] Translating TTPs into Actionable Countermeasures | All-Around Defenders](/images/yt/j8/breakout-2-translating-ttps-into-actionable-countermeasures-i7j7i.jpg)
[Breakout #2] Translating TTPs into Actionable Countermeasures | All-Around Defenders
44Speakers: Ismael Valenzuela (McAfee/SANS) and Vicente Diaz (Threat Intel Strategist at Virustotal)
What are the best practices to make TTPs actionable? How can blue team defenders translate TTPs into practical actions to protect their organizations?
In this breakout, you’ll learn how to select interesting technical details that can be found in TTPs and playbooks, and how to use them to pivot and use similarity to get a better understanding of the campaign, find what is relevant of the technical details we obtained to understand how useful they will be for characterizing an attacker.
--
The All-Around Defender: New Year, New Start is not a summit nor is it a webcast. This event is a special community gathering of individuals who care about you, your family, your friends, and your career. We are holding this event to give away knowledge that will hopefully:
- Help defenders in their life and professional goals for 2021
- Giveaways that bring fellow blue teamers joy
Join our SANS Blue Team Community on Discord: https://discord.gg/ZvgwPtuusE
#AllAroundDefenders #SANSBlueTeam #BlueTeam #BlueTeamers #CyberDefense #CyberDefenders #SANSInstitute