• Understand what are supply chain attacks.
• Understand what mitigation steps can be taken to mitigate supply chain attacks.
• Understand what detection steps can be taken to detect supply chain attacks.
• Understand how threat intelligence sharing can help to reduce the spread of the attack.

At the end of the session, participants will be able to simulate a supply chain attack, verify the attack, escalate into an incident and perform threat intelligence sharing using combination of multiple tools.

• SOC Managers
• Information Security Managers
• Tier-1 & Tier-2 Security Analysts
• Security Engineers
• IT/System Administration/Network Administration Professionals / Academia

1. Supply chain attacks

• What is a supply chain attack
• Types of supply chain attacks
• What can Enterprises do to mitigate it

2. Red Team: Simulating a Supply Chain Attack

• Hands-on session, simulating a Watering Hole Attack

3. Blue Team: Detecting a Supply Chain Attack

1. Tools for Detections: SOC Platform
   • What is a SOC Platform
   • What are logs
   • Examples of SOC Platforms
2. Tools for Detections: Threat Intelligence Platform
   • What is a Threat Intelligence Platform
   • What is threat intelligence
   • Examples of TI Platform
3. Detection and Analysis
   • Hands-on session, detecting the attack, analysing the attack and escalating it into an incident ticket

4. Threat Intelligence Sharing

• Learning the cyber threat intelligence language for sharing
• Hands-on session, performing threat intelligence sharing