AttackIQ Bolsters Cybersecurity Controls Throughout a Large U.S. Military Service

AttackIQ’s deep alignment with the MITRE ATT&CK framework also set it apart. “All of our cyberdefense operations are aligned to the MITRE ATT&CK kill chain. When we are looking for adversarial activity to simulate, our defenders turn to the MITRE ATT&CK framework for guidance.” AttackIQ is also safe to run in production, and made a big difference. ““Every other vendor we evaluated had developed its own malware. Running that malware opened up security holes on the systems and devices we were testing. By contrast, AttackIQ doesn’t compromise the systems it is testing.”

The Security Optimization Platform can go far beyond automated testing to help train the U.S. military in cyberdefense readiness. “In my mind, training should be our military service’s number-one priority for the Security Optimization Platform,” says the capabilities manager. “Until operators are well-trained, they will not be proficient or effective enough to defend against adversaries. The benefit of adding AttackIQ to a training program is that it provides details on exactly how a system is being attacked and what commands the attacker is using. A defender can learn from AttackIQ simulations how to detect attacks that don’t show up in our list of signatures or our behavioral detection techniques.”

The capabilities manager in this U.S. military service envisions an end state in which the military combines extensive internal threat intelligence with the MITRE ATT&CK framework and a regular flow of data from U.S. intelligence agencies. The military would leverage this aggregated knowledge when creating attack emulations with AttackIQ. “We would have a wide array of collection points that identified cyberattacks and trending threats,” he said. “We would continuously review that intelligence and develop mitigation plans that we would test against on a daily or weekly basis. That would be a huge culture change for how our military operates.”

Learn more about how the AttackIQ Security Optimization Platform is helping this large U.S. military service drive down costs and better achieve its strategic objectives.