th the ooda a loop oop for or cisos
play

Th The OODA A Loop oop for or CISOs Roselle Safran - PowerPoint PPT Presentation

Nov 17, 2023 •338 likes •531 views

Th The OODA A Loop oop for or CISOs Roselle Safran roselle@keycaliber.com Background KeyCaliber Uplevel Security Executive Office of the President (Obama Administration) Department of Homeland Security (US-CERT) NY NYMJCSC 2020 NY

  1. Th The OODA A Loop oop for or CISOs Roselle Safran roselle@keycaliber.com

  2. Background KeyCaliber Uplevel Security Executive Office of the President (Obama Administration) Department of Homeland Security (US-CERT) NY NYMJCSC 2020 NY NYMJCSC 2020

  3. What is the OODA Loop? Observe Act Orient Decide NY NYMJCSC 2020 NY NYMJCSC 2020

  4. Benefits of the OODA Loop Increases agility Optimizes decision-making process Ensures continuous knowledge transfer Enables constant improvement NY NYMJCSC 2020 NY NYMJCSC 2020

  5. Tactical Versus Strategic OODA Loop Tactical: Strategic: Address immediate threats Achieve long-term goals Optimize speed Optimize resource allocation “Block & tackle” Prioritize projects Narrow scope “Big picture” NY NYMJCSC 2020 NY NYMJCSC 2020

  6. Common Challenges to Strategic OODA Loop Implementation Observe/Orient cannot keep up with Decide/Act Decide/Act impact cannot be adequately measured Act requires collaboration with other teams Manual processes create bottlenecks NY NYMJCSC 2020 NY NYMJCSC 2020

  7. Thoroughly Observe Observe Your Your Frequency Organization Adversaries Orient • • • Match cadence of Leverage existing Utilize internal Decide decisions-making security stack and external info process Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  8. Know Your Organization – Data Sources Cloud & Observe GRC Application Endpoint Network Data Data Data Data Orient • • • • Critical Firewall Email EDR Decide • • assets IDS gateway AV • • • Risks Cloud mgmt Vulnerability Act scanner NYMJCSC 2020 NYMJCSC 2020 NY NY

  9. Know Your Adversaries – Data Sources Observe Threat Alert/Incident Open Source Intelligence Data Data Orient • • • Tactics, techniques, Attribution Current events Decide • • and procedures (TTPs) Attack type Industry news • • Internal Targeted assets • Act External NYMJCSC 2020 NYMJCSC 2020 NY NY

  10. Orient By Strategic Impact Observe Critical to Valuable to Monetary Operations Organization Savings Orient • • • Mission functions Intellectual property Risk reduction Decide • • Business continuity Financial data • Customer data • Act PII / PHI NYMJCSC 2020 NYMJCSC 2020 NY NY

  11. Slice and Dice Observed Data Observe Aggregates Trends Orient • • Asset types Monthly Decide • • Business units Quarterly • • Locations Yearly Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  12. Decide Based on the Numbers Observe Increase Reduce Reduce Revenue Risk Costs Orient • • • Technology Added capability Quantified current state Decide • • • People Differentiator Quantified future state • Processes Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  13. Decide Based on Comparisons Observe Industry Frameworks Peers Orient • • NIST CSF Open source data Decide • • CMMC Sector information • CIS 20 sharing centers Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  14. Decide Based on Priorities of Others CIO/ Observe CSO/ Board CEO CRO Orient • • • Fiduciary Bottom line Regulations Decide • responsibilities Accountability Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  15. Define Actions with OODA Loop Data Observe We have X [O [Observe] , Orient which means Y [O [Orient] , so we will accomplish Z [D [Decide] Decide by doing A [ Ac Act] t]. Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  16. Track Actions Observe What Why Who When Orient • • • • Decide & Act Observe & Responsible Deadline Decide (project/task) Orient individual/ group Act NYMJCSC 2020 NYMJCSC 2020 NY NY

  17. Implementation Tips Develop each step of the process Measure with key performance indicators (KPIs) and metrics Document procedures with other business units Automate, automate, automate NY NYMJCSC 2020 NY NYMJCSC 2020

  18. Th Thank You! Roselle Safran roselle@keycaliber.com https://www.linkedin.com/in/rosellesafran/ @rosellesafran

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Front-End Ops and the OODA Loop: A Decision Cycle-Time Strategy for Winning in a Hostile Internet

Front-End Ops and the OODA Loop: A Decision Cycle-Time Strategy for Winning in a Hostile Internet

Front-End Ops and the OODA Loop: A Decision Cycle-Time Strategy for Winning in a Hostile Internet Environment Erik Sowa, VP Engineering, ulive @eriksowa esowa@ulive.com erik.sowa@gmail.com Hello! Im here to talk to you about Front-End

433 views • 41 slides
Coarse-Grained Parallelism Variable Privatization, Loop Alignment, Loop Fusion, Loop

Coarse-Grained Parallelism Variable Privatization, Loop Alignment, Loop Fusion, Loop

Coarse-Grained Parallelism Variable Privatization, Loop Alignment, Loop Fusion, Loop interchange and skewing, Loop Strip-mining cs6363 1 Introduction Our previous loop transformations target vector and superscalar architectures Now

538 views • 32 slides
Repetition Types of Loops Counting loop Know how many times to loop

Repetition Types of Loops Counting loop Know how many times to loop

Repetition Types of Loops Counting loop Know how many times to loop Sentinel-controlled loop Expect specific input value to end loop Endfile-controlled loop End of data file is end of loop Input validation loop

257 views • 8 slides
Trading Strategies Introduction Trading Loop Trading Loop Trading Loop Trading Loop Three

Trading Strategies Introduction Trading Loop Trading Loop Trading Loop Trading Loop Three

Trading Strategies Introduction Trading Loop Trading Loop Trading Loop Trading Loop Three Strategies 1. Mean Reversion 2. Momentum 3. Pairs Trading Budish, E., Cramton, P ., & Shim, J. (2015). The high-frequency trading arms race:

803 views • 22 slides
CISOs Guide To Shutting Down Attacks Using The Dark Web Agenda The Dark Web: Whats At

CISOs Guide To Shutting Down Attacks Using The Dark Web Agenda The Dark Web: Whats At

CISOs Guide To Shutting Down Attacks Using The Dark Web Agenda The Dark Web: Whats At Stake Gain Visibility, Take Control Leveraging Splunk & Phantom Key Recommendations Agenda The Dark Web: Whats At Stake Gain

800 views • 41 slides
1 Checking Legality in Kelly & Pugh Framework Loop Fusion Example (cont) For each dependence,

1 Checking Legality in Kelly & Pugh Framework Loop Fusion Example (cont) For each dependence,

Loop Transformations for Parallelism & Locality Loop Fusion Example Last time What are the dependences? Unimodular transformation framework do i = 1,n What are the dependences? Loop permutation s 1 A(i) = B(i) + 1 Loop

201 views • 3 slides
Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations

Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations

Loop Optimizations Important because lots of execution Loop Optimizations Loop Optimizations time occurs in loops First, we will identify loops We will study three optimizations Loop-invariant code motion This lecture is

249 views • 5 slides
B A Y C P L E I T S C U PART II univalence n loop e w ? p a t h s loop l o

B A Y C P L E I T S C U PART II univalence n loop e w ? p a t h s loop l o

B A Y C P L E I T S C U PART II univalence n loop e w ? p a t h s loop l o o p A By Jonah Kan - Own work, CC BY-SA 3.0, h ps://commons.wikimedia.org/w/index.php?curid=27584059 I know how to guarantee a combinatorial

571 views • 22 slides
2-loop 1-loop 0.4 0.3 0.2 V I N C I A R O O T 0.1 0 0 0.5 1 1.5 2 log (Q/GeV) 10

2-loop 1-loop 0.4 0.3 0.2 V I N C I A R O O T 0.1 0 0 0.5 1 1.5 2 log (Q/GeV) 10

0.6 (Q) (Q) s s 0.5 2-loop 1-loop 0.4 0.3 0.2 V I N C I A R O O T 0.1 0 0 0.5 1 1.5 2 log (Q/GeV) 10 Skands, TASI Lectures, arXiv:1207.2389 Hartgring, Laenen, Skands, arXiv:1303.4974 Z 3

238 views • 9 slides
Loop Transformations for Parallelism & Locality Previously Loop transformations,

Loop Transformations for Parallelism & Locality Previously Loop transformations,

Loop Transformations for Parallelism & Locality Previously Loop transformations, unimodular transformation framework Loop interchange/permutation Loop reversal Checking transformation legality Today

211 views • 9 slides
Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed

Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed

Loop Invariants: Part 2 7 January 2019 OSU CSE 1 Maintaining the Loop Invariant A claimed loop invariant is valid only if the loop body actually maintains the property, i.e., the loop invariant remains true at the end of each execution of

386 views • 20 slides
Loop Statements & Vectorizing Code Chapter 5 Attaway MATLAB 4E for loop used as a

Loop Statements & Vectorizing Code Chapter 5 Attaway MATLAB 4E for loop used as a

Loop Statements & Vectorizing Code Chapter 5 Attaway MATLAB 4E for loop used as a counted loop repeats an action a specified number of times an iterator or loop variable specifies how many times to repeat the action general

745 views • 31 slides
c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that

c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that

while (c) { loop body true c } false loop body P (postcondition) Loop Invariant Defn : A boolean condition that is checked immediately before every evaluation of the loop guard . while (c) I //@loop_invariant I; true c { loop

362 views • 8 slides
Trace while Loop, cont. Trace while Loop, cont. Print Welcome to Java Print Welcome to Java int

Trace while Loop, cont. Trace while Loop, cont. Print Welcome to Java Print Welcome to Java int

while Loop Flow Chart int count = 0; while (loop-continuation-condition) { while (count < 100) { // loop-body; Chapter 4 Loops System.out.println("Welcome to Java!"); Statement(s); count++; } } count = 0; Loop false false

215 views • 9 slides
Repetition Examples When is repetition necessary/useful? Types of Loops Counting loop

Repetition Examples When is repetition necessary/useful? Types of Loops Counting loop

Repetition Examples When is repetition necessary/useful? Types of Loops Counting loop Know how many times to loop Sentinel-controlled loop Expect specific input value to end loop Endfile-controlled loop End of

425 views • 16 slides
Upper and Lower Loop Bound Estimation by Symbolic Execution and Loop Acceleration Pavel Cadek

Upper and Lower Loop Bound Estimation by Symbolic Execution and Loop Acceleration Pavel Cadek

Upper and Lower Loop Bound Estimation by Symbolic Execution and Loop Acceleration Pavel Cadek 1 1 TU Wien, Austria Formal Methods in Computer-Aided Design 30 Oct - 2 Nov, 2018 Loop Bound Analysis Upper loop bound: max { n , 0 } Lower loop

248 views • 5 slides
Spatial-Temporal Explanations for Storage Failure Predictions based on Multivariate Telemetry

Spatial-Temporal Explanations for Storage Failure Predictions based on Multivariate Telemetry

Spatial-Temporal Explanations for Storage Failure Predictions based on Multivariate Telemetry Sensors Ioana Giurgiu, Anika Schumann IBM Research Zurich Goal Explain predicted failures in large-scale real world storage environments based

478 views • 16 slides
Construction Industry KPIs UK Industry Performance Report 2018 Presented by: Allan Wiln,

Construction Industry KPIs UK Industry Performance Report 2018 Presented by: Allan Wiln,

Construction Industry KPIs UK Industry Performance Report 2018 Presented by: Allan Wiln, Economics Director Date: 30 th January 2019 About Glenigan About Glenigan Glenigan provides market intelligence on the UK construction industry.

402 views • 16 slides
P&S Council March 7, 2019 Go Live July 1, 2019 Today ISD Advisory Structure and

P&S Council March 7, 2019 Go Live July 1, 2019 Today ISD Advisory Structure and

WorkCyte Program Update P&S Council March 7, 2019 Go Live July 1, 2019 Today ISD Advisory Structure and Metrics (in process) WorkCyte Update Quality Assurance Review Program Health Testing Program Quality

481 views • 15 slides
in data warehouses Manfred Jeusfeld University of Skvde, Sweden 1 (c) 2015 M. Jeusfeld,

in data warehouses Manfred Jeusfeld University of Skvde, Sweden 1 (c) 2015 M. Jeusfeld,

eBISS Summer School Barcelona 2015 Key performance indicators in data warehouses Manfred Jeusfeld University of Skvde, Sweden 1 (c) 2015 M. Jeusfeld, Creative Commons CC-BY-SA 4.0 About myself studied computer science at RWTH

934 views • 70 slides
Reforming Stark/Anti- Kickback Policies KEVIN MCANANEY The Stark Law 42 USC 1395nn

Reforming Stark/Anti- Kickback Policies KEVIN MCANANEY The Stark Law 42 USC 1395nn

January 2019 Reforming Stark/Anti- Kickback Policies KEVIN MCANANEY The Stark Law 42 USC 1395nn Prohibits physicians from referring M/M patients to hospitals and other entities for hospital and other services if the physician has a

267 views • 7 slides
DUNE ASICs Status and Plans Marco Verzocchi Fermilab 14 October 2019 ColdADC Work done

DUNE ASICs Status and Plans Marco Verzocchi Fermilab 14 October 2019 ColdADC Work done

DUNE ASICs Status and Plans Marco Verzocchi Fermilab 14 October 2019 ColdADC Work done mostly outside Fermilab Moved to test packaged parts at BNL/Uflorida Will be installed on FEMBs soon Additional testing of bare chip at BNL

690 views • 4 slides
Performance Requirements of a Quantum Computer Using Surface Code Error Correction Cody Jones,

Performance Requirements of a Quantum Computer Using Surface Code Error Correction Cody Jones,

Performance Requirements of a Quantum Computer Using Surface Code Error Correction Cody Jones, Stanford University Rodney Van Meter, Austin Fowler, Peter McMahon, James Whitfield, Man-Hong Yung, Thaddeus Ladd, Aln Aspuru-Guzik,

967 views • 34 slides
Switch-Less Frequency-Domain Multiplexing of GFET Sensors and Low-Power CMOS Frontend for

Switch-Less Frequency-Domain Multiplexing of GFET Sensors and Low-Power CMOS Frontend for

Switch-Less FDM GFET Sensors LP CMOS Frontend 1024-Ch ECOG Intro FDM ROIC CMOS Chip Conclusions Switch-Less Frequency-Domain Multiplexing of GFET Sensors and Low-Power CMOS Frontend for 1024-Channel ECOG J.Cisneros-Fernndez 1 , M.Dei

517 views • 25 slides

More recommend