Presentation Title: “Degrees of Defense: Mapping the Pyramid of Pain to Layered Security Systems”

← Go back

Degrees of Defense: Mapping the Pyramid of Pain to Layered Security Systems
Summary

Prioritization of risk is a perennial challenge for CISOs. In 2013, David Bianco of the SANS Institute published his "Pyramid of Pain" model to prioritize IOCs based on the amount of cost they impose on adversaries. This talk will expand on this model to help inform which defensive layers should be

Description

Prioritization of risk is a perennial challenge for CISOs. In 2013, David Bianco of the SANS Institute published his "Pyramid of Pain" model to prioritize IOCs based on the amount of cost they impose on adversaries. This talk will expand on this model to help inform which defensive layers should be prioritized for maximum ROI.

Approval Status:
Approved
Date Submitted:
August 22, 2025
Category:
Information Technology
Audience:
  • Information Technology Staff

Presenter Information

Presenter(s):
Victor Weis
Consulting Systems Architect
Fortinet
About the Presenter(s):

Victor Weis is a Cybersecurity Architect for Fortinet Public Sector US. Based in Ohio, he consults with government and educational organizations across America on practical strategies for improving cyber outcomes in harmony with the mission of citizen service. In his spare time, he enjoys playing chess and reading RFCs by candlelight.

Administrative Notes

The following is a history of the notes and communication attached to this entry.

This entry has no reviews.

Review this entry