As 2016 draws to a close, we predict that the term hunt will continue to be a talking point throughout the cyber security community in 2017. As we pointed out in a previous blog, Threat Hunting: More Than a Marketing Buzzword, cyber threat hunting involves any concentrated effort to discover attackers inside your network that everyone else may have missed (including your existing technical solutions and steady-state security teams). Adopting the hunt mindset also means adopting the assumed breach mindset – you may be compromised, but you can still minimize the damage.
In our latest white paper, based on the webinar presented by Chris Hendricks, VP of Security Operations, and Andrew Cook, Incident Response and Hunt Capability Lead, we reveal how hunt approaches can be applied holistically, whether it means working with ongoing hunt teams or engaging in a single hunt operation.
This white paper discusses:
- Basic and advanced threat detection capabilities along the detection/response spectrum
- Where your steady-state security teams fit in along the detection-response spectrum
- How to achieve hunt using your current people, processes, and technology resources
- What hunt is and what it isn’t – including how hunt compares to other cyber security practices
- How to measure the direct and indirect value of adversary threat hunting
- Who can hunt, and how small and large organizations can implement hunt methods
Download our white paper to find out how your organization can find attackers faster and cut down on operational costs, and learn more about our ActiveResponse Services to fortify your threat detection and response capabilities.