The MITRE ATT&CK framework is a tool used by many cybersecurity teams to help analyze adversarial attacks and techniques. By tracking adversary methods and styles of attack, organizations gain the ability to understand their cyber risk landscape from the threat actor’s perspective.
Sara Dominick

Recent Posts
3 Steps to Combine MITRE ATT&CK and FAIR to Focus Cyber Risk Management
[fa icon="calendar'] Dec 3, 2020 12:36:43 PM / by Sara Dominick posted in Risk Management
You DO Have Enough Data for a Quantitative Risk Analysis
[fa icon="calendar'] Jun 3, 2020 3:47:25 PM / by Sara Dominick posted in FAIR
It’s a common misconception about quantitative risk analysis that not “enough” data or“bad” data means bad calibration. That’s not true in a couple of ways. First, one always has “enough” data to conduct an analysis and second, with calibrated estimation, we’re not dependent on the amount of data we bring to the table.