This session explores the importance of understanding the tactics and objectives of malicious cyber actors and how that understanding serves to improve cybersecurity performance. The difference between securing a network and defending it depends on identifying potential infiltrators and what they want from a system, as well as the ways they will try to get it. Going beyond routine red teaming, maximizing the value of purple teaming, and understanding malicious actors is essential for any IT professional protecting a network that a malicious actor would target.

Learning Objectives:

• Understand the difference between network security and network defense.
• Discover how to learn about malicious actors' tactics and how to defend them.
• Focus on integrating offensive mindsets into defensive planning.