ISSA – Central Ohio InfoSec Summit
For 15 years, the the Central Ohio InfoSec summit mission has been to serve the Central Ohio information security community and this year is no different! A key component of what makes the Central Ohio InfoSec Summit impactful is the cooperation and cohesiveness of the local InfoSec community. The willingness to share knowledge, educate, and encourage one another is second-to-none. The 15th annual InfoSec Summit will be a hybrid event, allowing attendees to attend virtually or in person. The Summit will kick-off on Thursday, May 5th, with a speaker lineup of over 100 industry experts and a vendor hall featuring a variety leading security vendors.
Mitre ATT&CK!, Threat Modeling & Understanding Your Control Coverage
Speakers: Troy Vennon
Organizations often struggle to adequately understand how their security frameworks, GRC programs, and technical controls all work together to defend against Threat Actors and emerging threats. In today’s climate of vendors promising their tools or technologies will be your security “silver bullet”, many organizations lack the visibility or understanding of how their controls truly function, where control gaps may exist, or whether controls are effective at defending against the TTP’s they should be prioritizing. By bridging the gaps between GRC programs, regulatory compliance, technical tooling and Threat Intelligence, security teams can be informed of where to invest time and resources to improve control coverage, or where to direct efforts to validate existing controls for efficacy to continually improve defenses.