Threat Informed Defense & Why it Matters to MSP/MSSPs

In this video, Rich Struse and Aaron Chernin discuss the challenges and opportunities for MSPs in implementing a threat-informed defense strategy. They explore how the MITRE ATT&CK framework can be leveraged to prioritize cybersecurity defenses for small and medium-sized businesses. The discussion also touches on the importance of using standardized terminologies and frameworks to improve communication and effectiveness in cybersecurity practices.

• The importance of using standardized frameworks like MITRE ATT&CK to describe adversary behaviors and align security measures accordingly.
• The need for MSPs to translate technical security measures into business impact language that end customers can understand.
• Emphasis on the importance of prioritizing security measures based on threat intelligence and potential business impact rather than just focusing on vulnerabilities.