Jarkko Kinnunen
Jarkko Kinnunen is a Security Solution Engineer at Microsoft and Co-Founder of KuoSec. A passionate advocate for the Blue Team, he specializes in developing continuous security services and enhancing SOC operations. By day, he advises companies and partners on designing and implementing solutions built on Microsoft security technologies. After working hours, he loves helping the community to do stuff...
Session
The idea that "attackers only need to succeed once" has long influenced the development of defensive strategies. This talk challenges that myth by reframing the defender’s role: not as a gatekeeper who must be perfect, but as a strategist who can disrupt the attacker’s journey at multiple points.
We’ll explore how a layered defense strategy, enhanced by detection engineering, attack surface management, and deception technologies, can shift the advantage toward defenders.
To ground these ideas in practice, we’ll look at how MITRE’s Summiting the Pyramid and Attack Flow projects help defenders visualize, prioritize, and disrupt adversary behavior across the kill chain. These tools offer actionable frameworks for mapping detection coverage and understanding attacker movement in complex environments.
Attendees will gain practical insights into designing and implementing strategic defenses that turn every layer, every alert, and every response into an opportunity to stop attackers in their tracks. Because in modern cyber defense, every step truly counts.