Using MITRE ATT&CK as an Operational Framework: Prioritizing, Testing, and Sustaining Data

An interview with Frank Duff and Cat Self

 

Download the Additional White Paper --->

 

The MITRE ATT&CK framework has become a cornerstone for understanding, mapping, and improving cybersecurity defenses, but turning that knowledge into measurable results is where many teams struggle.

SANS Instructor Chris Crowley, Tidal Cyber Co-Founder and Chief Innovation Officer Frank Duff, and Tidal Cyber Senior Director of Adversary Research Cat Self, explore how to move beyond theory and operationalize MITRE ATT&CK across environments.

They discuss how to prioritize threats relevant to your sector, map defensive coverage to tactics and techniques, and continuously validate your confidence levels with simulations and real-world testing.

White Paper MITRE Operational Framework Cover

 

Speakers:

Frank-Duff-400Frank Duff, CIO and Co-Founder, Tidal Cyber

Frank Duff is a leading expert in threat-informed defense and the founder of MITRE’s ATT&CK® Evaluations program, which transformed how organizations assess detection and response capabilities. He has led adversary emulation, purple teaming, and cybersecurity research efforts for U.S. government clients and helped accelerate the adoption of advanced capabilities through public-private partnerships.

Cat Self HeadshotCat Self, Senior Director Adversary Research, Tidal Cyber

Steven Gerry is a 4x VP of Sales with more than a decade of experience building and scaling high-performing go-to-market teams across cybersecurity and enterprise tech. Now at Tidal Cyber, Steven brings a clear vision to help transform how enterprises adopt Threat-Led Defense, partnering with security leaders to operationalize intelligence and drive the outcomes that matter most.