Source: securityboulevard.com – Author: Greg Day
a.hs-inline-web-interactive-184212331187:active { background: rgb(242, 188, 38) !important;color: rgb(242, 242, 242) !important; }
a.hs-inline-web-interactive-184212331187:active:hover { background: rgb(242, 188, 38) !important;color: rgb(242, 242, 242) !important; }
Register now: 2024 MITRE ATT&CK Enterprise Evaluation Result Breakdown Webinar.
Back in the summer I wrote a blog around capability versus usability, in which I highlighted that typically industry testing focuses on capability, despite one of the key challenges in the industry being skills. EDR by its nature, is a technical capability and as such the skills gap in this space is even greater. I will always remember a good friend sharing in his keynote, a number of years ago, that there is little point in buying a best of breed solution if you don’t have the people powers to actually use it.
In our recent SoC optimizationresearch we saw that on average only 50-80% of alerts are processed the same day, false positives being a significant challenge and distraction for SoC analysts.
*** This is a Security Bloggers Network syndicated blog from Blog authored by Greg Day. Read the original post at: https://www.cybereason.com/blog/2024-mitre-critical-metrics
Original Post URL: https://securityboulevard.com/2024/12/out-of-the-box-detection-coverage-a-critical-metric-for-endpoint-security/
Category & Tags: Security Bloggers Network,MITRE ATT&CK Enterprise Evaluations 2024 – Security Bloggers Network,MITRE ATT&CK Enterprise Evaluations 2024
Views: 2
