Building a Community of Cyber Defenders


June 6 - 9, 2022
San Francisco, CA



Join MITRE Experts and Members of the Threat-Informed Defense Community at RSA

At MITRE, we're dedicated to solving problems for a safer world. We’re empowering the cyber community with the knowledge, training, and expertise to implement an effective threat-informed defense strategy. As a connector to government, industry, and academia, we bring together “the whole of nation” to tackle our nation’s biggest cybersecurity challenges across multiple industries.

Visit Us

Moscone South 
Booth 3438

Cyber Careers @ MITRE

Looking for extraordinary opportunities working with mission-driven colleagues? Our teams discover solutions to the world’s toughest challenges in cybersecurity.  

Find your next career with MITRE.

MITRE Impact

MITRE’s mission-driven teams are dedicated to solving problems for a safer world.

Through our public-private partnerships and federally funded R&D centers, we work across government and in partnership with industry to tackle challenges to the safety, stability, and well-being of our nation.


Monday, June 6, 2022

Measuring the Difference: Metric Development at NCCOE's Securing AI Testbed

1:10 pm - 2:00 pm


  • Paul Rowe, Principal Cyber Resiliency Researcher, MITRE
  • Harold Booth, Computer Scientist, National Institute of Standards and Technology (NIST)
AI-enabled technology is rapidly being adopted in nearly all industries. New attacks and defenses to AI are also growing. As a result, it can be hard to know how resilient these technologies are. Come see NCCoE’s Securing AI Testbed in action! This session will demonstrate measuring successful defenses against corresponding attacks and applying it to various hypothetical industry adoptions of AI-enabled technology.

Birds of a Feather: Denial, Deception, and Adversary Engagement Cases

1:10 pm - 2:00 pm


  • Stanley Barr, Senior Principal Deception Researcher, MITRE
We at MITRE are strong believers that cyber deception technologies, unlike many other defensive technologies, are not “fire and forget.” Rather, deception technologies should be deployed as part of an intentional strategy that drives toward well understood goals. This discussion will cover a new MITRE framework to share information. This session will follow Chatham House Rule to allow for free exchange of information and learning.

What Have the Courts Done Now? Explaining the Impact of Recent Cyber Cases

2:20 pm - 3:10 pm


  • Julie Bowen, SVP, Operations & Outreach, Chief Legal Officer, MITRE
  • Richard Aldrich, Cybersecurity Policy and Compliance Analyst, Booz, Allen, Hamilton/DOD OSD
This session will present an engaging discussion of key holdings of recent cyber court cases in an interactive format that asks the audience to respond to the presented facts. The cases span the areas of privacy, cybercrime, electronic discovery, ransomware, and more. Attendees will be provided actionable information for responding to these legal developments.

Tuesday, June 7, 2022

Red Teaming AI Systems: the Path, the Prospect and the Perils

8:30 am - 9:20 am


  • Dr. Christina Liaghati, Operations Manager, MITRE
  • Nicholas Carlini, Research Scientist, Google Brain
  • Stefan Hermanek, AI Red Team Product Manager, Facebook
  • Ram Shankar Siva Kumar, Data Cowboy, Microsoft; Harvard
Google, Facebook, Microsoft and MITRE come together to dissect why Red Teaming AI systems is mushrooming everywhere. What value can organizations get from it? Is it actually necessary? Is there a mimkatz for machine learning? What simple steps can be taken to secure AI systems in organizations? This session will explore the question: Is Red teaming AI systems a fad or the future?

A Whole Lotta BS (Behavioral Science) about Cybersecurity

8:30 am - 9:20 am


  • Dr. Deanna Caputo, Chief Scientist for Insider Threat Capabilities, MITRE
  • Oz Alashe, CEO, Cybsafe
  • Lisa Plaggemier, Executive Director, National Cybersecurity Alliance
We all do things we know we shouldn’t and don't do things we know we should. Behavior is no different when it comes to security. Take MFA: many know it enhances security, yet few use it. Experts will explore the 2021 Cybersecurity Attitudes and Behaviors Report, shedding light on the public's behaviors and beliefs about security and why people do or don't perform actions that will keep them secure.

Reinventing Cybersecurity: Tales of Rebellion and Resistance

11:15 am - 12:15 pm


  • Tracy Bannon, Software Architect & DevSecOps Advisor, MITRE
  • Breanne Boland, Product Security Engineer, Security Partnerships, Gusto
  • Jasmine Henry, Field Security Director, JupiterOne
  • Coleen Shane, Network Security Engineer, Quick Quack Car Wash
Learn from the authors of the new book, Reinventing Cybersecurity, now on sale at Amazon, Hear stories of real-world successes and failures from seasoned professionals who have been there, done that and lived to tell their tales. You’ll come away with valuable insider knowledge, tips, and tricks you can share with your team and immediately put into practice to build a modern cybersecurity practice within your company.

Addressing Supply Chain Security Risks: MITRE's System of Trust

1:15 pm - 2:05 pm


  • Robert Martin, Sr. Software and Supply Chain Assurance Principal Engineer, MITRE
Learn about System of Trust (SoT), a supply chain security community effort defining, aligning, and addressing the concerns and risks that stand in the way of organizations’ trusting suppliers, supplies, and service offerings. SoT offers a framework for focusing attention on those supply-chain-related risks most relevant and actionable to the parties involved in exchanging goods and services.

Wednesday, June 8, 2022

Protecting Against Evolving Threats to Global Shipping Infrastructure

8:30 am - 9:20 am


  • Alan Dinerman, Department Manager, Advancing Technologies Department, National Cybersecurity Division, MITRE
  • Josie Long, Senior Industrial Cybersecurity Program Manager, 1898 & Co.
  • Suzanne Lemieux, Director, Operations Security & Emergency Response Policy, API
American Petroleum Institute and MITRE will detail how energy resource impacts the global supply chain and showcase the important collaborative efforts with the Department of Energy and National Institute of Standards and Technologies. These efforts focus on protection of critical infrastructure within the vital Marine Transportation System and overall global supply chain.

The Road to Adversary Engagement: Get Your Organization From 0 to 88 Mph

1:15 pm - 2:05 pm


  • Maretta Morovitz, MITRE Engage Lead, MITRE
  • Stanley Barr, Senior Principal Deception Researcher, MITRE
  • J.R. Manes, Global Head of Cyber Intelligence, HSBC
  • Anthony Rogers, Special Agent FBI
Collaboration across the public and private sector is crucial to defend against adversaries. Join MITRE, HSBC, and the FBI in a conversation that will expand the community utilizing denial, deception, and adversary engagement technologies for corporate defense by exploring the field, highlighting successful operations, and emphasizing the importance of this technology as a defensive strategy.

Thursday, June 9, 2022

A Practical Framework to Hack the Cyber Workforce Talent Gap

8:30 am - 9:20 am

  • Teresa Thomas, Lead, Neurodiverse Talent Enablement, MITRE
  • Kiersten Todt, Chief of Staff, Cybersecurity and Infrastructure Security Agency, U.S. Department of Homeland Security
Come learn some of the real issues behind the cyber skills gap and get an insider glimpse of the practical recommendations shared with emerging nations to help them bridge that gap, along with a look into the neurodiversity pilots initiated within US federal agencies to help them incorporate more diversity into their cyber talent pool.

Birds of a Feather: Driving Deception with Adversary Behaviors

9:40-10:30 a.m.

  • Maretta Morovitz, MITRE Engage Lead
As adversaries interact with the environment, they reveal their own behavioral weaknesses. These weaknesses can be exploited by the defender using deception technology. We will discuss how organizations can start using adversary behavior as a driver behind their defensive strategy. This session will follow Chatham House Rule to allow for free exchange of information and learning.

Stop Being Sitting Cyber Ducks! Adversary Engagement: The New Cyber-defense

1:00 pm - 1:50 pm

  • Stanley Barr, Senior Principal Deception Researcher, MITRE
  • Robert Black, Deputy Director, UK National Cyber Deception Lab (NCDL)
  • Dan Brett, Founder and CSO, CounterCraft
  • Patrick Gould, Deputy Directory, Cyber Portfolio, Defense Innovation Unit (DIU)
  • Mary Yang, Chief Marketing Officer, LookingGlass Cyber Solutions
Passive approaches to cybersecurity are failing, with breaches continuing daily. This session will explore using proactive cyber-defense measures, such as adversary engagement and deception, to defend better by fighting attackers in networks. With participants from MITRE and the UK National Cyber Deception Lab, the Defense Innovation Unit and tool vendors, this will be a fascinating discussion.

State of Apple IT & Security 2022, Kandji

4:30 pm

  • Cat Self, Lead Cyber Operations Engineer, MITRE
Apple’s annual Worldwide Developers Conference (WWDC) and the RSA conference are converging in the San Francisco Bay Area, bringing together the brightest minds in security and IT. Hear from the leading experts in Apple Security & IT as they share their reaction to WWDC, discuss what the news means for the growth of Apple in the enterprise, and discuss the state of Apple security & IT today and tomorrow.
Learn More→

MITRE Speakers

Defender Resources

MITRE ATLAS™ is a knowledge base of adversary tactics, techniques, and case studies for machine learning (ML) systems.
Learn More→


Our MITRE ATT&CK® framework provides a free online knowledge base of cyber adversary tactics and techniques.
Learn More→


MITRE ATT&CK Defender™ (MAD) is a training and credentialing program for cyber defenders looking to strengthen their threat-informed defense approach to security.
Learn More→


In the MITRE Engenuity ATT&CK® Evaluations (Evals) program, product and service providers collaborate with MITRE experts in evaluating security solutions. Evals results are openly published.
Learn More→


The CALDERA™ framework empowers cyber defenders to save time, money, and energy through automated security assessments.
Learn More→


Sponsored by the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the Common Attack Pattern Enumerations and Classifications program provides a comprehensive dictionary of known patterns of attack.
Learn More→


Operated by MITRE Engenuity, the Center for Threat-Informed Defense advances the state of the art and the state of the practice in threat-informed defense globally. Its research results are freely available to the public.
Learn More→


Sponsored by the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the Common Vulnerabilities and Exposures program identifies, defines, and catalogs publicly disclosed cybersecurity vulnerabilities.
Learn More→


Sponsored by the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the Common Weakness Enumeration program is a community-developed list of software and hardware weakness types.
Learn More→


Cyber Infrastructure Protection Innovation Center

Our Cyber Infrastructure Protection Innovation Center works as a trusted advisor across industry and government to help them better understand cyber threats and identify practical steps to make their operations more secure.
Learn More→


Sponsored by the Cybersecurity Directorate of the National Security Agency, D3FEND (short for Detection, Denial, and Disruption Framework Empowering Network Defense) standardizes vocabulary for defensive measures to counter adversary behaviors.
Learn More→


The MITRE EngageTM framework helps cyber defenders plan and discuss adversary engagement operations.
Learn More→


Health Cyber Ransomware Resource Center

To help hospitals and other healthcare facilities counter the growing threats from ransomware attacks, MITRE curated free, practical tools drawing on our own capabilities, relevant government sources, and the broader practitioner community.
Learn More→

MITRE Inside-R Protect offers independent, data-driven, insider risk assessments and research to critical infrastructure organizations.
Learn More→


MITRE operates the National Cybersecurity Federal Funded Research & Development Center—sponsored by the National Institute of Standards and Technology (NIST)—to help organizations address their most pressing cybersecurity needs.
Learn More→


Playbook for Threat Modeling Medical Devices

To increase understanding of threat modeling throughout the medical device ecosystem, the Food and Drug Administration engaged MITRE and the Medical Device Innovation Consortium to conduct a series of threat modeling bootcamps and develop a playbook.
Learn More→


MITRE’s System of Trust framework provides a comprehensive and customizable security risk assessment process that enables supply chain organizations to have confidence in each other, service offerings, and the supplies being delivered.


MITRE Insider Threat Framework Initiative

The initiative uniquely harnesses both the behavioral sciences and technical sciences to deter, detect, and mitigate insider threats more effectively.
Learn More→



MITRE CREF Navigator Cyber Resiliency Engineering Framework (CREF) is incorporated into NIST SP 800-160 Volume 2, but now our new Navigator helps engineers to better search and visualize complex relationships in the standard to better design resilient cyber solutions.
Learn More→


11 Strategies of a World-Class Cybersecurity Operations Center

Our new book brings forth the best principles and practices within MITRE to help the entire cyber ecosystem level up their defenses and operations.

Meet the authors at our RSA booth #3438 or download the book for free.

Copyright 2022, The MITRE Corporation. All rights reserved