APT actors present a growing threat in today's technology landscape. APT attackers have significant funding, patient, sophisticated, and will target vulnerabilities in people and process as well as technology. RSA IR has operationalized techniques to detect and prevent adversarial activities based on Tools Techniques and Procedures (TTP's). Based on our experience I present an operational framework which aims to increase organizational security awareness through defense-in-depth. I have included an APT intrusion case study on a large company to help explain the detection techniques that helped to identify and mitigate organization impact.