EDITORIAL: Do We Need to Add a “Data Inventory” to the SSP?
The System Security Plan (SSP) contains three major architectural artifacts...is it time for a fourth? The SSP and its three...
Good
SERIES3: Even More Challenges Facing Cyberlaw
The final installment on cyberlaw, issues, challenges, and headaches.... https://cybersentinel.tech/2018/11/10/series-virtual-evidence-challenges-in-cyberlaw/ MORE & MORE CHALLENGES The other tests facing the value...
PROPOSAL: A Federated Cybersecurity Domain as a matter of US Policy
What if the Risk Management Framework (RMF) applied to both the public and private sector ? SUMMARY This policy proposal...
HHS’s Blockchain Initiative & Its Security Pitfall
A Review of Cybersecurity Shortsightedness I really enjoy attending the Washington DC's Chapter of the National Contract Management Association's (NMCA)...
SERIES2: Cyberlaw for Cyber Professionals
PART 2: What we ALL need to know Covered in This Article: Fourth AmendmentFifth AmendmentElectronic Communications Privacy Act (ECPA)Communications Assistance...
BOOK: “The Signal and the Noise”
Considered one of the most insightful leaders in Predictive Analytics (PA) Silver, N. (2012). The signal and the noise: Why...
SERIES: Virtual Evidence & Challenges in Cyberlaw
PART 1: The Benefits & Dangers to Law Enforcement (LE) BACKGROUND The Washington Post Magazine (Sellers, 2015) described a fictional...
Is Artificial Intelligence our Savior or SkyNet?
The Good, Bad & Ugly The hype on artificial intelligence (AI) is in two camps: it's the best thing ever...
What’s Next for Better Cyber Predictive Analytics?
How can Predictive Analytics (PA) move forward to improve our ability to better anticipate problems and threats? The use of...
A Need for Better Cybersecurity Time Management
Some Suggestions for the Department of Defense A Hybrid-Risk Management Framework (RMF) Step 3 A challenge facing the Department of...
Cyber and Program Risk Management: Close Cousins…mostly
While not greatly different, there are some unique variations The history of Risk Management (RM) can be traced to the...
SYNOPSIS: Risk Management Strategies for Security Threats
A review of academic work addressing how to improve cybersecurity Larrimore, N. P. (2018). Risk management strategies to prevent and...
CONSIDER: Introducing “SPITS” as an Agile Cyber-Solution Framework
We consider the following mini-framework This is a discussion on an emerging cybersecurity tactical approach to inject an even lower...
CYBERLAW: The Stored Communications Act (SCA)
A Case Analysis SUPREME COURT OF THE UNITED STATES City of Ontario, California, Et. Al. v. QUON Et Al. Certiorari...
The Importance of PS-3 (Personnel Screening)
It's All About the Insider Threat Personnel Security controls may seem cumbersome and involved, especially when talking about unclassified systems....
Is the Dark Web All Bad?
The Differences between the "Deep" and "Dark" Web Some people have heard of the Dark Web, many others have not....
REVIEW: China’s Position on the 2014 Sony Attack: Implications for U.S. Response
Wilson, J. (2015). China's Position on the Sony Attack: Implications for the US Response. Washington, DC: US-China Economic and Security...
Where is DOD NIST 800-171 Implementation Going?
Expectations Beyond DOD In late 2018, the expectation is that the United States (US) federal government will expand the National...
HYPOTHETICAL: Chinese Incursion into Philippine Maritime Territory
Is a DDOS Considered an "Armed Attack"? In this post, we look at what may occur diplomatically, politically, and militarily...
CYBERLAW: Universal City Studios, Inc. v. Reimerdes
111F Supp 2d 294(U.S. Dist. Ct., So Dist. NY, 2000) Historical and legal considerations that play a role in policy...
ESSAY: Can the Human “Poet” Bring Value to Predictive Analysis
An essay on the role of how HUMAN beings play a vital role in the future of data analytics ...
The 2018 California Consumer Protection Act (CCPA)
How NIST 800-171 May Be The Better Solution To-date The CCPA provides California residents the right: To know what personal...
Seeking Associate Bloggers
An Opportunity to Show Your Expertise We are looking for 3 guest-bloggers to help us refine this entry of the...
Is “Agile” Cybersecurity Possible?
NIST Frameworks that Fit In the age of lean and agile development, can “Agile Cybersecurity” fit into these paradigms? Is...
Continuous Monitoring: What Good Looks Like
Defining Continuous Monitoring Cybersecurity is not about shortcuts. There are no easy solutions to years of leaders demurring their responsibility...
The Power of the POAM
What is the best way to think about the POAM Lifecycle? In Brief Using the US Intelligence Community’s Intelligence Cycle...
Welcome to this Inaugural Issue of “The Cyber Sentinel”
Our Inaugural Release! "The Cyber Sentinel" is dedicated to "the good, the bad and the ugly of cybersecurity." WEEK 2:...
