FREE Purple Team Summit | May 24-25: Explore collaboration approaches that maximize value of red and blue teams. Register now!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Measuring and Improving Cyber Defense Using the MITRE ATT&CK® Framework: A SANS Panel Discussion

  • Tuesday, July 28, 2020 at 1:00 PM EDT (2020-07-28 17:00:00 UTC)
  • John Hubbard, Chris Kennedy, Jonathan Reiber


  • AttackIQ

You can now attend the webcast using your mobile device!



In this webcast, sponsor representatives and report author John Hubbard will discuss the new SANS report, Measuring and Improving Cyber Defense Using the MITRE ATT&CK Framework. This roundtable will explore themes from the paper, including:

  • Why the framework is so important to security teams
  • How the matrix is evolving
  • What best practices and tools are key to successfully using the framework

Register today to be among the first to receive the associated whitepaper.

Click here to register for the companion webcast to be held at 1 PM ET on Tuesday, July 21, 2020.

Speaker Bios

John Hubbard

John is a Security Operations Center (SOC) consultant and speaker, a Certified SANS instructor, and the course author of 3 SANS courses: SEC450: Blue Team Fundamentals - Security Operations and Analysis, MGT551: Building and Leading Security Operations Centers, and SEC455: SIEM Design & Implementation. John also teaches additional SANS Blue Team courses such as SEC511: Continuous Monitoring and Security Operations, and SEC555: SIEM with Tactical Analytics. Through his years of experience as a Lead Cyber Security Analyst and SOC Manager for a major pharmaceutical company with over 100,000 employees and global operations, John has developed real-world, first-hand knowledge of what it takes to defend an organization against advanced cyber-attacks. Read more about John here.

Chris Kennedy

Chris Kennedy is the CISO and VP, Customer Success at AttackIQ. He is an impassioned security executive who has a proven track record in building and delivering enterprise security programs for some of the most important critical infrastructure organizations in the world. As a military officer, Chris led the initial development of the US Marine Corps’ global incident response organization, and held various roles in defense contracting, including delivering the US Department of Treasury’s Cybersecurity Operations program, driving cybersecurity, and products and services. He most recently helped Bridgewater Associates, the largest hedge fund in the world, secure its enterprise.

Jonathan Reiber

Jonathan Reiber is the Senior Director, Cybersecurity Strategy and Policy at AttackIQ. He is a cybersecurity strategist, writer and public policy professional based in Oakland, California. From serving in senior positions in the Department of Defense in Barack Obama’s administration to leading cybersecurity strategy for companies in Silicon Valley, he is focused on building resilience to the technological and political disruptions of the digital age. He advises governments and organizations on the risks of digitization—from online extremism to influence operations to cybersecurity—and the political, policy and technical solutions required to mitigate them.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.