WASHINGTON – The Chertoff Group, a leading global security risk management firm, today announced it is collaborating with ServiceNowⓇ, a leading global provider of digital workflow solutions, to help organizations build threat-informed defense and response workflows through Chertoff Group Cyber Risk Diagnostic services and ServiceNow Security Operations solutions. Recent ransomware and supply chain compromises are leading to increasingly devastating impacts. The Chertoff Group/ServiceNow coordinated approach can help organizations defend against these and other cyber threat campaigns.
ServiceNow’s Security Operations application integration with MITRE ATT&CK enables security analysts to gain visibility on both internal defenses and potential threat behavior seeking to exploit defensive gaps. Organizations track adversary behavior and use filters to search ongoing and past incidents to better understand potential threat activity. Equipped with heat maps, SOC teams can review their detection rules and adjust detection controls coverage across techniques, campaigns, and specific adversaries. Once security teams can determine the tactics and techniques used in cyber attack campaigns, they can better understand the attack surface and how well prepared they are to prevent and detect cyber events.
The Chertoff Group’s Cyber Risk Diagnostic service enables organizations to leverage ServiceNow’s solution for CISOs, CIOs and C-suite business executives. The Chertoff Group begins with a company’s business profile and helps the company map that profile to threat, building a threat model; it then maps threat tactics, techniques and procedures (TTPs) to internally-facing defensive measures to determine if threat-informed defenses are in place; finally, it tests those defenses against the threat model to determine whether defenses are operating as intended. In doing so, we turn metrics and data-points into actionable insights on security performance. The service is built on top of the MITRE Corporation’s Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework, which is the most comprehensive, authoritative approach to mapping of real-world, known threats to defenses openly available today.
Customers receive hands-on support to familiarize the technical team in conducting threat-specific planning, mapping to defenses, controls assurance testing and presenting the information in meaningful, intuitive ways. They are also coached on how to make specific business cases for security tools or personnel investments that align with their organization’s specific security needs. Technical teams receive in-depth training to empower organizations to combine the ServiceNow platform and the Cyber Risk Diagnostic process to continuously evaluate countermeasure performance and make strategic, threat-informed decisions to further mature the program.
READ OUR JOINT WHITE PAPER HERE
Join us for a webinar to learn more about threat-informed defense and how The Chertoff Group and ServiceNow are collaborating to help organizations anticipate and respond to cyber threat campaigns by operationalizing the MITRE ATT&CK framework. SIGN UP HERE
About The Chertoff Group
The Chertoff Group is a global risk advisory services firm that helps clients understand, manage and communicate on security risk. Through the firm’s Strategic Advisory Services Practice Area, The Chertoff Group helps clients build threat-informed defense operating models, prepare for, and manage cyber crises.
ServiceNow, the ServiceNow logo, Now, Now Platform, and other ServiceNow marks are trademarks and/or registered trademarks of ServiceNow, Inc. in the United States and/or other countries.
To learn more, please contact info@chertoffgroup.com
