ManualsPro MANDIANT Mandiant Cyber Threat Profile User Guide

Mandiant Cyber Threat Profile User Guide

June 1, 2024
MANDIANT

DATA SHEET

Cyber Threat Profile

Highlights

  • Anticipate changes to your organizational risk profile based on changing threat factors
  • Provide situational awareness to leadership teams, cyber defense, and enterprise risk functions to guide security strategy and investments
  • Proactively prepare operational teams through targeted training exercises against real threats
  • Validate technology against the capabilities and tactics of adversaries
  • Map organizational high-value targets to threat actors based on the vulnerabilities and malware leveraged
  • Survey internal network telemetry to uncover active or past unauthorized access

Make security decisions based on the threats that matter most

Understand the threats targeting you

Cyber threat actors and tactics are constantly changing and adapting to defensive measures, complicating the lives of security professionals. To properly understand the threats it faces, an organization must identify its specific security goals, business vertical, geography, high-value targets (critical assets), historical threat activity, and defensive posture. These efforts require regular maintenance and should combine both an internal and external point of view for holistic understanding and useful specificity.

The Mandiant Cyber Threat Profile gives you a composite picture of the most important and relevant cyber threats to your organization and how those threats are likely to materialize and impact you and your partners, now and in the future. The Cyber Threat Profile is an essential part of an intelligence- led security strategy–one that creates a proactive defensive posture to reduce cyber risk.

Benefits of a Cyber Threat Profile

A cyber threat profile has strategic, operational and tactical benefits, including:

  • Arm executives with a thorough understanding of cyber threats to guide security investments
  • Bridge threat communication gaps between business and security operations teams
  • Review security architecture decisions based on attacker motivation, capability, and intent
  • Enhance threat modeling processes through incorporation of pertinent attacker profiles
  • Reduce responder stress by effectively scoping investigations
  • Go beyond CVE scoring by integrating threat intelligence into vulnerability management activities

Collectively, the benefits of a cyber threat profile enable you to make security decisions based on cyber risk rather than best practices or instinct.

External threat landscape knowledge, coupled with a clear understanding of your internal operating environment are essential to a comprehensive cyber threat profile.

Mandiant Cyber Threat Profile 0

FIGURE 1. Elements of an effective Cyber Threat Profile.

A: External Threat Landscape
B: Analysis and Synthesis
C: Internal Operating Environment

  1. Cyber Espionage
  2. Cybercrime
  3. Hacktivism
  4. Emerging Threats
  5. Intellectual Property
  6. Customer PII
  7. Infrastructure
  8. Legal and Confidential

A cyber threat profile is a critical component to a holistic cybersecurity strategy. It can serve multiple organizational personas and be a central input and driver for other threat management activities, such as threat modeling, security validation, threat hunting, red teaming, penetration testing, and tabletop exercises. Before beginning, it is important to understand the desired outcome. Mandiant intelligence experts build cyber threat profiles at three different levels. Based on Mandiant’s experience developing these profiles over many years, not every customer will require the same approach, which generally corresponds to the threat fidelity desired. Each level builds upon the previous levels threat fidelity and includes all prior deliverables.

Mandiant Cyber Threat Profile 1
FIGURE 2. Applying your Cyber Threat Profile.

A: Key Areas Enabled
B: Reduce Cyber Risk Exposure

  1. Strategy and Development
  2. Security Engineering
  3. Corporate Security
  4. Threat Modeling
  5. Threat Hunting /Incident Response
  6. Red Teaming /Penetration Testing
  7. Security Validation
  8. Vulnerability Management

TABLE 1. Cyber Threat Profile levels.

Level 1
Which threats should I focus on?| Level 2
How do we ready operational teams?| Level 3
What threat activity have we seen in our environment?
---|---|---
Level 1 outcomes are focused on strategic stakeholders. At this level threats are outlined at an organizational level: those that have targeted or are likely to target organizational users and operations. It informs security leaders of attacker motivation and intent. Outcomes will help explain who is behind an attack, why the organization may be a target, and what adversaries are interested in. | Level 2 outcomes build on Level 1 and are focused on operational stakeholders while enabling strategic program decisions. At this level, external threats are linked to internal high-value targets (critical assets) so organizations can prioritize defenses based on threat capability. Level 2 helps show how and where various threat scenarios are likely to cause severe impact within the operating environment.| Level 3 outcomes includes all Level 2 outcomes and are focused on tactical stakeholders while providing operational visibility into the effectiveness of current defenses and giving the organization cyber risk clarity. Mandiant experts analyze internal security telemetry to deliver a fact-based assessment of present and past adversary targeting, which allows precise threat prioritization and allocation of resources.
Level 1 output: Comprehensive threat report (PDF format) detailing impactful cyber threats that are relevant to your geography, business sector, key infrastructure, and operations.| Level 2 output: All level 1 deliverables plus a customized threat register utility (Microsoft Excel format) that maps identified threats, including known vulnerability usage and associated malware to your high-value targets. The utility also includes a MITRE ATT&CK overlay.  | Level 3 output: All level 1 and level 2 deliverables enriched by customer security telemetry and Mandiant threat analysis, including a cyber risk heat map with countermeasure recommendations linked to environmental findings. A technical addendum (Microsoft Excel format) incorporates discovered malware families and related indicators, exploitation vectors, and any implicated internal hosts.

next Threat Preparedness

Cyber Threat Intelligence functions must take a leading role in managing organizational threats. Business and cyber defenders need up-to-date intelligence to inform their specific decision-making processes. Those that fail to do so will have trouble consistently realizing value from intelligence and may ultimately decrease operational efficiency. The Cyber Threat Profile is your first step to becoming an intelligence-led organization.

For more information visit cloud.google.com
I-EXT-DS-US-EN-000411-04

Read User Manual Online (PDF format)

Loading......

Download This Manual (PDF format)

Download this manual  >>

MANDIANT User Manuals

Mandiant Cyber Threat Profile User Guide
MANDIANT
Mandiant Fortifying Cyber Defenses with MDR Service User Guide
MANDIANT
Mandiant Proactive Exposure Management White Paper User Guide
MANDIANT
MANDIANT Benefits of Integrating Cyber Threat Intelligence and Risk Management User Guide
MANDIANT

Related Manuals

SPACE TELEVISION HDX70IR HDMI Extender with IR Control User Manual
SPACE TELEVISION
TATZE LINK TI MTB Flat Pedal Instructions
TATZE
alula Using Professional Security Cameras Instructions
alula
savio TWS-01 Wireless Bluetooth Earphones User Manual
Savio
AVEO ENGINEERING Redbaron Maximini The Ultimate Recognition LED Light Instruction Manual
AVEO ENGINEERING
MIGHTIER MT004 Tablet User Manual
MIGHTIER
Shenzhen Xft Medical XFT-2003P Hand Rehab System User Manual
Shenzhen Xft Medical
TCL SOCL500TWS Wireless Earbuds with Pumping Bass User Manual
TCL
saunalife E7W Half Glass Window Ergo-Series Barrel Sauna Installation Guide
saunalife
Aerpro CHSU1C Steering Wheel Control Interface Instruction Manual
Aerpro
dormakaba 7B1-7B3 Mechanical Key Locks User Guide
dormakaba
diagnosti care FI-FLU-502 Influenza A+B Test Cassette User Guide
diagnosti care
MOTOROLA SOLUTIONS MN007245A01 2 Way Radio Instructions
Motorola Solutions
HYCO Technology O188 Wireless Ring Controller User Manual
HYCO Technology
Shark SMART FISHING DRONE User Manual
Shark
SIEMENS SE23HI60CE Dishwasher User Guide
SIEMENS
TONEMAC N20 Neckband Bluetooth Earbuds User Manual
TONEMAC
V I V O STAND-V001L-LW Laptop Tray and Desk Mount Instruction Manual
V I V O
Fasce PB902 Exercise Band User Manual
Fasce
VEVOR Y486BT Bluetooth Thermal Label Printer User Guide
VEVOR
NEBO Luxtreme SL25R Lumen Rechargeable Instruction Manual
NEBO
GAMESIR T4K Multi-Platform Wired Gaming Controller User Manual
GameSir
SHARP QW-NA1CF47ES-EU Dishwasher User Manual
Sharp
Swiss Madison SM-1T113/SM-1T114 Voltaire One-Piece Toilet Installation Guide
Swiss Madison
Shanghai Yiying Crane Machinery Co PA200 Electric Mini Hoist User Manual
Shanghai Yiying Crane Machinery Co
STRICH SPS-20 Guitar Effect Pedal Power Supply User Manual
STRICH
MIWAT B0B7NBXQDQ 20W Plug in LED Motion Sensor Flood Light Instruction Manual
MIWAT
Smart Clean RoboVac 2000 User Manual: Ionvac Smartclean Troubleshooting & Instructions
Tzumi
ROKiT solos Smart Glasses User Manual
Rokit
Midea MDC17P0ABB Built In Dishwasher Instruction Manual
Midea
Contact Us   Privacy Policy   8.419ms