MITRE’s own ATT&CK® subject matter experts produced MAD20’s ATT&CK® SOC Assessments course to familiarize learners with how to implement ATT&CK® for visibility into where a SOC needs improvements and inform how to apply ATT&CK® to design a rapid, low overhead and broad SOC Assessment. The training Provides tips on how to analyze SOC technologies like tools and data sources. Defenders will gain key knowledge as experts share best practices for performing interviews and leading discussions on ATT&CK® with SOC personnel and educate them on how to recommend changes based on assessment results
Learning Objectives
The objectives of this course are to 1) enable learners to conduct Security Operations Center (SOC) assessments that are rapid, have low overhead, and are broad enough to help the SOC get on their feet with ATT&CK, 2) ensure mastery of analyzing SOC technologies, and 3) teach learners to analyze assessment results and make recommendations.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.