the organized mess business ethics of cyber threat intel
play

The Organized Mess & Business Ethics of Cyber Threat Intel Ron - PowerPoint PPT Presentation

Jan 04, 2023 •117 likes •290 views

The Organized Mess & Business Ethics of Cyber Threat Intel Ron Schlecht Introduction Ron Schlecht , Managing Partner 18 years of Information Security experience G Contracting, Law Enforcement, Consulting, CISO Founded BTB

  1. The Organized Mess & Business Ethics of Cyber Threat Intel Ron Schlecht

  2. Introduction • Ron Schlecht , Managing Partner – 18 years of Information Security experience • G Contracting, Law Enforcement, Consulting, CISO • Founded BTB Security in 2006

  3. Company Profile Company Profile • The BTB Group, LLC / BTB Security – Founded in 2006 – Offices in Philadelphia, Chicago, Austin – coverage nationally – Backgrounds include years of experience with Big Four and similarly sized organizations, and experience building, managing, and operating corporate security groups. – 3 partners • Brian Bailey, Managing Partner (Chicago) • Chris McGinley, Managing Partner (Philly) • Ron Schlecht, Founder / Managing Partner (Philly/Chicago)

  4. Cyber Threat Intel • Gartner definition: – evidence-based knowledge, including context, mechanisms, indicators, implications and actionable advice, about an existing or emerging menace or hazard to assets that can be used to inform decisions regarding the subject's response to that menace or hazard.

  5. Current State …with less yelling

  6. Velocity and Volume • Disturbing Trends (continue) – Commercialization of malware – Attack kits readily available – Botnets readily available – spam/attack/DDoS – Adaptation is now the norm for attackers…not NEW

  7. Who’s doing it? • National Governments • Terrorists • Organized Crime • Hacktivists • Hackers

  8. What are ”WE” doing about it? ecurity Woman (or Man if you are one

  9. Sources of Cyber Threat Intel (CTI) • Endpoint Security Vendor • UTM/Firewall/IDS Vendor • Vulnerability Management Vendor • SIEM Vendor • Application Security Vendor • Log Management Vendor • Forensics Vendor • Identity and Access Management Vendor • CTI Intel Platform Vendor • CTI Intel Subscription Feed Vendor

  10. Improvements • Better context, accuracy and/or speed in handling incidents • Improved visibility into attack methodologies • Faster and more accurate detection and response • Reduction in incidents through early prevention • Plus it sounds really cool

  11. The Problems • Vendor Driven • Standards and Interoperability around feeds • Ethics – G and Commercial won’t share! – Research input – Dark Web

  12. Company Profile

  13. What do we do? • Open Threat Exchange – Alienvault • OpenIOC - FireEye • STIX – Structured Threat Information Expression • Cybox – Cyber Observable eXpression • TAXII – Trusted Automated eXchange of Indicator Information • OASIS – A nonprofit consortium that drives the development, convergence and adoption of open standards for the global information security

  14. OASIS

  15. Why Is This Important? • Malware • Attack Kits • Botnets / Bad networks • Security data correlation • Plus it sounds really cool

  16. Questions? Ron Schlecht ron.schlecht@btbsecurity.com

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1

DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1

www.nviso.be DEFENDING DIGITAL BUSINESS AGAINST CYBER ATTACKS Presentation SAI 21/02/2019 Our Agenda 1 Demo time 2 Threat actor groups 3 Nation states 4 Hacktivism 5 Organized cyber crime 6 The bad competitor 7 The Internet of

777 views • 42 slides
THE ANATOMY OF CYBER THREAT INTELLIGENCE (CTI) Noureen Njoroge OVERVIEW Define Cyber Threat

THE ANATOMY OF CYBER THREAT INTELLIGENCE (CTI) Noureen Njoroge OVERVIEW Define Cyber Threat

THE ANATOMY OF CYBER THREAT INTELLIGENCE (CTI) Noureen Njoroge OVERVIEW Define Cyber Threat Intelligence (CTI) Define Cyber Intelligence (CI) Understand the importance of CTI to an organization Components of Threat Sources of

197 views • 19 slides
How to protect yourself and your business from the threat of Cybercrime Presented by Laura

How to protect yourself and your business from the threat of Cybercrime Presented by Laura

How to protect yourself and your business from the threat of Cybercrime Presented by Laura Hodgson Cyber Protect Officer Cyber.safe@titan.pnn.police.uk Who are we? North West Regional Organised Crime Unit Cumbria Collaboration of 6 North

353 views • 20 slides
The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities?

The Cyber Threat: Securing Cyber Infrastructure Overview What are the FBIs Priorities? What is the FBIs Cyber Structure? HQ Division Dedicated Cyber squads in all 56 field offices, including satellite locations overseas.

1.54k views • 14 slides
Screenshot CC BY-NC 3.0 Before: the mess CC BY-NC 3.0 Before: the mess CC BY-NC

Screenshot CC BY-NC 3.0 Before: the mess CC BY-NC 3.0 Before: the mess CC BY-NC

Screenshot CC BY-NC 3.0 Before: the mess CC BY-NC 3.0 Before: the mess CC BY-NC 3.0 Before: the mess Akka & Spray RabbitMQ C++ & CUDA Cassandra CC BY-NC 3.0 Before: the mess scene topic (Map[String, String],

614 views • 30 slides
Cyber Security: The Current Threat T/Detective Chief Inspector Paul Peters Regional Cyber Crime

Cyber Security: The Current Threat T/Detective Chief Inspector Paul Peters Regional Cyber Crime

Cyber Security: The Current Threat T/Detective Chief Inspector Paul Peters Regional Cyber Crime Unit RCCU-Tarian@south-wales.pnn.police.uk The criminal landscape is changing OFFICIAL Why worry about Cybercrime? Reduce Threat

330 views • 30 slides
Vajra Cyber Threat Mitigation Service (Vajra CTMS) A Military Grade Cyber Threat Mitigation

Vajra Cyber Threat Mitigation Service (Vajra CTMS) A Military Grade Cyber Threat Mitigation

Vajra Cyber Threat Mitigation Service (Vajra CTMS) A Military Grade Cyber Threat Mitigation Service for Businesses and Governments Cyber Security & Privacy Foundation Pte. Ltd., Singapore Cyber Security & Privacy Foundation (CSPF)

369 views • 21 slides
Agenda What is Cyber Threat Intelligence (CTI) Sandbox Malware analysis Debugger

Agenda What is Cyber Threat Intelligence (CTI) Sandbox Malware analysis Debugger

PUBLIC Agenda What is Cyber Threat Intelligence (CTI) Sandbox Malware analysis Debugger Malware analysis Static RE with IDA pro Arme suisse EPFL 2019 2 Base daide au commandement BAC Applied Cyber Threat Intelligence

765 views • 63 slides
THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean

THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean

THE EVOLVING CYBER THREAT LANDSCAPE : Ensuring the Integrity and Value of Information Sean Kanuck Director of Cyber, Space and Future Conflict The International Institute for Strategic Studies NATO Parliamentary Assembly Warsaw, Poland 27

694 views • 10 slides
The Business of Battle Readiness: Over-the-Horizon Threat Management for Companies and Agencies +

The Business of Battle Readiness: Over-the-Horizon Threat Management for Companies and Agencies +

The Business of Battle Readiness: Over-the-Horizon Threat Management for Companies and Agencies + Roland Cloutier ADP Staff Vice President, Chief Security Officer A Responsibility to Protect Historical Cyber Defensive Operation Practices Im

616 views • 23 slides
Cyber Catastrophe in the Movies: Realistic Threat or Hollywood Hokum? MODERATOR: PANELISTS:

Cyber Catastrophe in the Movies: Realistic Threat or Hollywood Hokum? MODERATOR: PANELISTS:

Cyber Catastrophe in the Movies: Realistic Threat or Hollywood Hokum? MODERATOR: PANELISTS: Larry Clinton Scott Borg US Cyber Consequences Unit Internet Security Alliance Paul Davis NJVC Tim McKnight Northrop Grumman Danny McPherson

661 views • 32 slides
AI ethics Tae Wan Kim Associate Professor of Business Ethics Tepper School of Business 1.

AI ethics Tae Wan Kim Associate Professor of Business Ethics Tepper School of Business 1.

AI ethics Tae Wan Kim Associate Professor of Business Ethics Tepper School of Business 1. Coexistence? The future trolley problem Sentience (Utilitarianism): The capacity for phenomenal experience or quaila, such as the capacity to feel pain

913 views • 21 slides
CONFRONTING THE CYBER THREAT David J. Hickton SAC-PA Workshop Founding Director Pittsburgh,

CONFRONTING THE CYBER THREAT David J. Hickton SAC-PA Workshop Founding Director Pittsburgh,

CONFRONTING THE CYBER THREAT David J. Hickton SAC-PA Workshop Founding Director Pittsburgh, Pennsylvania University of Pittsburgh Institute for Cyber June 22, 2017 Law, Policy, and Security Chinese Economic Espionage First time the United

716 views • 13 slides
Introduction to me What is Ethics? Ethics is about how we meet the challenge of doing the

Introduction to me What is Ethics? Ethics is about how we meet the challenge of doing the

Introduction to me What is Ethics? Ethics is about how we meet the challenge of doing the right thing when that will cost more than we want to pay The Josephson Institute of Ethics What is Business Ethics? Rules that govern how businesses

794 views • 30 slides
Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The

Advanced Cyber Risk Management Threat Modeling & Cyber Wargaming April 23, 2018 The Homeland Security Systems Engineering and Development Institute (HSSEDI) is a trademark of the U.S. Department of Homeland Security (DHS). The HSSEDI

149 views • 13 slides
Overview Introduction Legal framework Dynamics of the threat Nature of cyber

Overview Introduction Legal framework Dynamics of the threat Nature of cyber

BISC : Cyber Security What can the VSSE contribute? 1 BISC - 19/11/12 Overview Introduction Legal framework Dynamics of the threat Nature of cyber attacks Targeting Paradigm shifts Whos targeting what? Tools

340 views • 5 slides
Toronto-Danforth Secondary Schools Pupil Accommodation Review Committee PARC Public Meeting

Toronto-Danforth Secondary Schools Pupil Accommodation Review Committee PARC Public Meeting

Toronto-Danforth Secondary Schools Pupil Accommodation Review Committee PARC Public Meeting December 7, 2015 This presentation is available on the TDSB public web site at www.tdsb.on.ca . Click on Accommodation Reviews at the bottom of the

330 views • 19 slides
Multi-client Predicate-only Encryption for Conjunctive Equality Tests Tim van de Kamp Andreas

Multi-client Predicate-only Encryption for Conjunctive Equality Tests Tim van de Kamp Andreas

Multi-client Predicate-only Encryption for Conjunctive Equality Tests Tim van de Kamp Andreas Peter Maarten Everts Willem Jonker 16th International Conference on Cryptology And Network Security, 2017 Monitoring over Encrypted Data Tim van de

497 views • 21 slides
Investor Presentation 1 PROFILES ELISABETTA FRANCHI ELISABETTA FRANCHI ENRICO MAMBELLI

Investor Presentation 1 PROFILES ELISABETTA FRANCHI ELISABETTA FRANCHI ENRICO MAMBELLI

Investor Presentation 1 PROFILES ELISABETTA FRANCHI ELISABETTA FRANCHI ENRICO MAMBELLI MATTEO ROVERSI GIANLUCA NANNINI CHAIRMAN & SHAREHOLDER CHIEF EXECUTIVE OFFICER GENERAL MANAGER CFO Today: Chief Executive Officer, Betty Today:

1.93k views • 48 slides
I N V ESTOR PRESEN TATI ON J u n e 0 1 , 2 0 1 8 C SE: C AL I OTC QB : F N N ZF DISCLAIMER

I N V ESTOR PRESEN TATI ON J u n e 0 1 , 2 0 1 8 C SE: C AL I OTC QB : F N N ZF DISCLAIMER

I N V ESTOR PRESEN TATI ON J u n e 0 1 , 2 0 1 8 C SE: C AL I OTC QB : F N N ZF DISCLAIMER Caution onar ary N Not ote R Regar arding F Forwar ard-Look oking I Information on These materials include forward-looking statements.

329 views • 14 slides
An Emergency Department-to-Home Intervention to Improve Quality of Life and Reduce Hospital Use

An Emergency Department-to-Home Intervention to Improve Quality of Life and Reduce Hospital Use

An Emergency Department-to-Home Intervention to Improve Quality of Life and Reduce Hospital Use Patient-Centered Outcomes Research Institute Improving Healthcare Delivery Systems Jeffrey Harman, PhD Jessica Schumacher, PhD Allyson Hall, PhD

426 views • 20 slides
Assessment @ CUL Jennifer Rutner Program Coordinator for Marketing and Assessment

Assessment @ CUL Jennifer Rutner Program Coordinator for Marketing and Assessment

Assessment @ CUL Jennifer Rutner Program Coordinator for Marketing and Assessment jb2563@columbia.edu Columbia University Libraries ARL Presentation 2007 Program Coordinator for Marketing & Assessment New Position March 2006

206 views • 8 slides
Culturally Responsive Assistive Technology Services Beth Poss possbeth@gmail.com @possbeth

Culturally Responsive Assistive Technology Services Beth Poss possbeth@gmail.com @possbeth

Culturally Responsive Assistive Technology Services Beth Poss possbeth@gmail.com @possbeth Learning Outcomes Participants will be able to: 1. Define Cultural Proficiency 2. Assess where they lie on the cultural proficiency continuum 3.

672 views • 42 slides
The Hospitality, Culinary & Tourism Management Program What we do to train your HS Students

The Hospitality, Culinary & Tourism Management Program What we do to train your HS Students

The Hospitality, Culinary & Tourism Management Program What we do to train your HS Students for a future in the industry Hospitality Industry in Napa County Jobs 13,347 (2016) Jobs +14% from 2014 to 2016 Industry Payroll $387

264 views • 9 slides

More recommend