Evaluating Indicators as Composite Objects


Posted on in Presentations

Indicators are increasingly derided within Cyber Threat Intelligence (CTI) as insufficient for defense and analysis, but this view is likely unfair and misunderstands the nature and purpose of atomic indicators. In this presentation, we will explore the idea of an indicator or IOC as an inherently composite object, and how this understanding can fuel robust analysis and detection mechanisms.

Download Slides: 2022_USA22_AIR-W01_01_Evaluating_Indicators_Composite_Objects
Participants
Joe Slowik

Speaker

Senior Manager, Threat Intelligence & Detections, Gigamon

Technology Infrastructure & Operations

hackers & threats network security endpoint detection visibility & response intrusion prevention/detection threat intelligence

View More Presentations


Topic
Technology Infrastructure & Operations

Subtopic
hackers & threats
network security
endpoint detection visibility & response
intrusion prevention/detection
threat intelligence


Share With Your Community