TIBER-EU is the European framework for threat intelligence-based ethical red-teaming and the first EU-wide guide on how authorities, threat intelligence and red-team providers should collaborate with different organizations to help improve their cyber resilience.
Thanks to its threat intelligence offering, Blueliv is well-positioned to create attack scenarios in line with the TIBER-EU framework. These scenarios will provide in-depth insights into different adversaries and their tactics, techniques and procedures (TTPs).
Threat Actor Profile of Lazarus Group in the Blueliv Threat Context module
TIBER-EU tests simulate the tactics, techniques and procedures of real-life attackers based on bespoke threat intelligence, focussing on the critical functions that would be targeted by real-world criminals, such as its people, processes and technologies. The simulation is engineered to provide an insight into the security perimeter of the testee and to help it in achieving greater security hygiene from there.
The European Central Bank describes the TIBER-EU framework as: “designed for (supra)national authorities and entities that form the core financial infrastructure, including those whose cross-border activities fall within the regulatory remit of several authorities.” Therefore it is not only applicable to entities operating in the financial sector but those in any other critical sector and can be adapted to the specificities of different jurisdictions to reflect this.
Blueliv has contributed with its high-quality threat intelligence and its Labs members in several projects, defining the possible external threat scenarios facing a tested entity. Blueliv’s threat intelligence analysts investigate and update our threat intelligence module, Threat Context, with the latest insights about threat actors, their TTPs, toolsets, and victims.
This information, its freshness and its accuracy are essential in providing a TIBER-EU Targeted Threat Intelligence (TTI) Report with a high level of quality.
MITRE ATT&CK matrix based on the Blueliv Threat Context information
We are thrilled to play a role in helping standardise threat intelligence-based ethical red-teaming in Europe and helping entities across the region achieve a greater understanding of cybersecurity and the threats lurking outside their organisation.
Jose Miguel Esparza, Head of Threat Intelligence at Blueliv
For more information on the TIBER-EU Framework, the scope of the testing templates and best practices, and the steps entities should take to deliver this, click here. For more information about how Blueliv can help you with your TIBER-EU program, please contact us at [email protected].
The post Blueliv supports TIBER-EU for threat intelligence-based ethical red-teaming appeared first on Blueliv.
*** This is a Security Bloggers Network syndicated blog from Blueliv authored by Roman Tauler. Read the original post at: https://www.blueliv.com/cyber-security-and-cyber-threat-intelligence-blog-blueliv/blueliv-supports-tiber-eu-for-threat-intelligence-based-ethical-red-teaming/