1. Moscone West 3005

The Cyber-Defense Matrix (CDM) was unveiled at RSA in 2016 to help practitioners organize security technologies. This session will show several new use cases of the CDM, including how to measure the efficacy and coverage of controls, align them against emerging threats and requirements, and manage your security program through design patterns that emerge from the use of the CDM.

Learning Objectives:
1: Use the structure of the Cyber-Defense Matrix to organize vendors and find gaps in your portfolio.
2: Understand how to define concrete security metrics to manage risk, prioritize investments and minimize business impact.
3: Gain a fuller understanding of the entire space of cybersecurity and how existing frameworks fit in.

Pre-Requisites:
Attendees should have a cursory knowledge of the NIST Cybersecurity Framework and its five primary functions (identify, protect, detect, respond, recover). If attendees have any experience with security metric development and measurement that would be beneficial. Lastly, experience with security risk analysis methodologies would be helpful.

Download pdf
Participants: