IBM Security Join our 16,000+ members as we work together to overcome the toughest challenges of cybersecurity. Join the Community
Hi guysI wanted to talk with you about a platform where you can look at the Mitre mapping of the QRadar content with another view. The platform I am talking about is Tidal (Tidal website).What Tidal allows you to do is to pivot in the att&ck matrix in many ways, highlighting where you might want to increase your detection coverage for specific threats.As an example, you can select the specific threats you want to monitor and they will be highlighted with a colour coding that makes it easy to understand the techniques you should focus on in priority to be efficient. In the example below, you can instantly see that "Data Encrypted for Impact" is a technique common to 4 out of the 6 threats I selected. In this case, this technique and the techniques leading to it should probably be higher in the list of priorities for detection / prevention implementation.