Cyber Threat Hunting (CTH) in an Age of Escalating Cyber Threats
Why Cyber Threat Hunting? As the digital world evolves and grows, so do the complexities and challenges of cybersecurity. Cyber...
Good
SPOT: Security Technical Implementation Guides (STIGs): Why are They Neglected by System Developers?
MORE THAN JUST NIST SECURITY CONTROLS System hardening is the process of securing a computer system by reducing its attack...
The Importance of Metrics in Cybersecurity
Metrics are a crucial aspect of cybersecurity, as they allow organizations to measure and track the effectiveness of their security...
CRITIQUE: The Problems with the Scientific-based Risk Metrics Methodology
Applying the Qualitative to Frame Quantitative Analysis Abstract A significant challenge facing businesses and agencies is how to focus limited...
CO-ACT: An Ethics Model for Data Science Privacy
Balancing the Benefits of Data Science with Privacy The implications of data science have yet to solidify within the academic...
SPOT: Neural Networks to Improve Cyber-Intrusion Detection
Wilner (2018) describes the nature of cybersecurity as unsurprisingly fluctuating due to ongoing threat challenges, especially in the area of...
SPOT: Why End-point Security is not good enough…
Threat Intelligence and Situational Awareness Beyond the Security Boundary Columbus (2019a) identifies ten major cybersecurity firms that are applying AI-based...
HISTORY: The 75-cent Clue….
Meet Stoll & Olson Phone Bill Problem Even before the vast proliferation of the personal computer, it took a 75-cent...
SPOT: Halladay and Predictive Analytics
The Value of Data Science in the 21st Century Halladay (2013) explores the value of AI/ML predictive capabilities in the...
SURVEY: Top 3 Artificial Intelligence (AI) Commercial Vendors
Getting Right or Wrong? Commercial Developments A review of open-source industrial sector literature reveals a predominant use of internal data...
SPOT: Our difficulties in stopping cyber-bad-guys
A perspective on where the cybersecurity challenge started The world is run by ones and zeroes…There’s a war out there…It’s...
Data Science Study Challenges
The Problems in Both Qualitative and Quantitative Research The Real Data Science Challenges: Data Collection and Analysis Data collection in...
SPOT: The Problem Statement-Study Method Connection
Why is the Problem Statement so Important? A practical problem statement should raise “the questions asked and the reasons for...
What Good is Theory Without Application?
A Matter of Whether You Want to Go to the Dance The use of a theoretical framework is most associated...
SPOT: The Master Threat Hunting Database (MTHDB)
The Threat Hunt Team and Cyber Threat Intelligence (CTI) Connection The Master Threat Hunting Database (MTHDB). The MTHDB is a...
Next-Gen Indicators of Compromise (NG-IOC)
An Evolution for Cyber Threat Intelligence Classic Indicators of Compromise (C-IOC) are based upon heuristic, static, “rules of thumb.” If...
What qualifies as a “successful” Cyber Threat Hunt?
Characteristics of a Successful Hunt Mission To ensure that the hunt team’s analysts remain focused on relevant and important hunts,...
Cybersecurity Deception: A Matter of an Active-Defense
What do we do when our failed efforts have been focused on prevention? DEFINITION: CYBER-DECEPTION: Deliberate actions to obfuscate the...
A Hierarchy for Policy References
How to order your references for correctness This is a continuation of blog posts to help those developing, writing, and...
SPOT: Policy v. Procedure
There is a Difference... POLICY: Broad and informative high-level description of principles focused on a particular topic area. For example,...
The 8 Key Elements of an Effective Cybersecurity Policy Document
Standard Categories for Your Cyber Policy Artifact (I have been getting a lot of requests for help in this area...I...
TOP 7: “Cyber-Analytics” Journal Articles (2019)
It's time we measure how well we are really doing with Cybersecurity using Data Science "Cyber-Analytics: The application of data...
PATHWAY: Supply Chain Risk Management (SCRM) 1.0 Framework
A Cybersecurity "Strawman" Offering Supply chain risks include the insertion of counterfeits, unauthorized production, tampering, theft, insertion of malicious software...
DOD’s Role in Responding to Malicious Cyber Activity
Q: When is self-defense defensive? A: Never Whether in the physical/kinetic or virtual/cyber world self-defense is never truly defensive. There...
CYBERLAW: Who owns what “information” on the Internet?
A VERY Quick Analysis of Judge Frank Easterbrook, US Court of Appeals, 7th District's Opinion on Internet IP Information on...
So, you’re now a Security Control Assessor (SCA)
Elements of Good Audit Practices There are several activities that will help the security auditor prepare for a formal assessment. ...
FEB 2019 POLL: Who is the greatest nation-state threat in cyberspace for 2019?
With all the new network breaches to both the public and private sector, who is the NUMBER 1 culprit? For...
One Reason ISO 27001 is DOA
So why should we move on and away from ISO 27001? The international standards community has done great work in...
Cisco Systems Survival in the “Age of China”
John Chambers, former CEO, lays the foundation of Cisco's long-term success and profitability For any one who works actively within...
The Cybersecurity Threat Hunt Process (THP)–The Tactical Piece
What are the Steps to an effective "Hunt Process" at the grassroots level? A “Hunt Mission Program” is centered around...
