Introduction to the CCS Practice This presentation is designed to provide a comprehensive overview of the issues surrounding the newly emerging field of Cyber Security. This presentation introduces some of the key concepts & approaches for managing Cyber Operations in a proactive rather than reactive manner – this constitutes the basis for a new IT practice: “CCS.” We will review some of the recent developments in regards to the market for Cyber-Security solutions. Copyright 2009, All Rights Reserved

This presentation is designed to provide a comprehensive overview of the issues surrounding the newly emerging field of Cyber Security.

This presentation introduces some of the key concepts & approaches for managing Cyber Operations in a proactive rather than reactive manner – this constitutes the basis for a new IT practice: “CCS.”

We will review some of the recent developments in regards to the market for Cyber-Security solutions.

Cyberspace is the Cloud & the Content… … the Medium and the Message Cyberspace is above all – Dynamic Integration of Capability & Communications What is Cyberspace? Copyright 2009, All Rights Reserved

Cyberspace is unique and ubiquitous; it is both its own domain as well as a dimension within all other domains. As we progress, the boundaries between cyber-operations and conventional operations will blur. Understanding that merger of capabilities and the planning for it is perhaps our greatest challenge. Cyberspace represents a single point of failure for the Federal Government. It provides asymmetrical opponents the opportunity to disrupt and defeat a vastly superior foe. Copyright 2009, All Rights Reserved Principles of Cyberspace

Cyberspace is unique and ubiquitous; it is both its own domain as well as a dimension within all other domains.

As we progress, the boundaries between cyber-operations and conventional operations will blur. Understanding that merger of capabilities and the planning for it is perhaps our greatest challenge.

Cyberspace represents a single point of failure for the Federal Government. It provides asymmetrical opponents the opportunity to disrupt and defeat a vastly superior foe.

Cyberspace Domains Copyright 2009, Teksouth Corporation

What’s Been Missing… Until the last few years a recognition of the importance of Cyber Operations as it relates to all aspects of national security and commercial industry. Comprehensive strategies that link government agencies (and industry) together within coherent coalitions. Specific technical solutions that can operationalize the emerging Cyber-strategic reality. Funding at all levels and cooperation that will be directed from the highest levels to make the paradigm shift to the next generation of Cyber operations. Copyright 2009, All Rights Reserved

Until the last few years a recognition of the importance of Cyber Operations as it relates to all aspects of national security and commercial industry.

Comprehensive strategies that link government agencies (and industry) together within coherent coalitions.

Specific technical solutions that can operationalize the emerging Cyber-strategic reality.

Funding at all levels and cooperation that will be directed from the highest levels to make the paradigm shift to the next generation of Cyber operations.

Cyber Security – The Reactionary Posture

The Risks of Reactionary Security Waiting for Cyber attacks and responding afterwards is a no-win situation, no matter how good we get, we’re only as good as the previous attack… Reactionary defense provides no disincentive or deterrent to opponents – there is little reason Not to attack, and potentially much to gain. Perhaps most importantly, it limits our potential to synergistically apply Cyber capabilities and assets to our warfighting missions – keeps us from realizing Cyber-Operations. Copyright 2009, All Rights Reserved

Waiting for Cyber attacks and responding afterwards is a no-win situation, no matter how good we get, we’re only as good as the previous attack…

Reactionary defense provides no disincentive or deterrent to opponents – there is little reason Not to attack, and potentially much to gain.

Perhaps most importantly, it limits our potential to synergistically apply Cyber capabilities and assets to our warfighting missions – keeps us from realizing Cyber-Operations.

The CCS Practice – Capabilities Matrix

Understanding the CCS Practice The CCS Practice is based upon our methodology for exploiting Semantic technology. The practice is heavily focused on improving situation awareness through enhanced analytics and “Collective Intelligence” or community wide collaboration. We understand the relationship between non-security architectures and Cyber Operations. Our solutions also take into consideration the legacy NETOPS / IA environments already in place. The CCS practice is dynamic, agile, flexible and proactive. Security cannot become bureaucracy. Copyright 2009, All Rights Reserved

The CCS Practice is based upon our methodology for exploiting Semantic technology.

The practice is heavily focused on improving situation awareness through enhanced analytics and “Collective Intelligence” or community wide collaboration.

We understand the relationship between non-security architectures and Cyber Operations. Our solutions also take into consideration the legacy NETOPS / IA environments already in place.

The CCS practice is dynamic, agile, flexible and proactive. Security cannot become bureaucracy.

CCS Practice Structure 1 - Strategy

The Importance of Cyber Strategy For 10 years, Cyber Strategy has been equated with network defense – it has remained static… Strategy in general is not and never will be constant – even doctrine changes. But Strategy reflects a more dynamic view of underlying doctrine. Tactics encompass the real-time library of options. Cyber Strategy also allows individual organizations to better understand how to accommodate unique missions and environments within the larger federated approach. Cyber Strategy will necessarily become an integral component of all other military strategy. Copyright 2009, All Rights Reserved

For 10 years, Cyber Strategy has been equated with network defense – it has remained static…

Strategy in general is not and never will be constant – even doctrine changes. But Strategy reflects a more dynamic view of underlying doctrine. Tactics encompass the real-time library of options.

Cyber Strategy also allows individual organizations to better understand how to accommodate unique missions and environments within the larger federated approach.

Cyber Strategy will necessarily become an integral component of all other military strategy.

CCS Practice 2 – Semantics / Analytics

Cyber Semantics & Analytics For most of the past 20 years, the nature of Network Defense analytics have been limited in nature – focused on individual enclaves or trend elements based on exploits (and their related signatures). Analytics is the number one area for improvement in Cyber Security. Semantic Technology and Integration provide us a powerful new tool for harnessing the next generation of analytics – and help apply analysis that can finally match the growing sophistication of Cyber attacks. Semantics can be applied both at the local (individual enclave) scope as well as the global scope. Copyright 2009, All Rights Reserved

For most of the past 20 years, the nature of Network Defense analytics have been limited in nature – focused on individual enclaves or trend elements based on exploits (and their related signatures).

Analytics is the number one area for improvement in Cyber Security.

Semantic Technology and Integration provide us a powerful new tool for harnessing the next generation of analytics – and help apply analysis that can finally match the growing sophistication of Cyber attacks.

Semantics can be applied both at the local (individual enclave) scope as well as the global scope.

CCS Practice 2 – Cyber Federation

Why “Cyber Federation” is Important With any sophisticated Cyber attack, enclave level or even domain level awareness may not be enough to detect, monitor, manage or respond to events. Most Cyber Security collaboration now involves some top-down communication or guidance and some delayed bottom-up incident reporting. However, this level of vertical coordination is inconsistent and incomplete. Cyber Federation involves comprehensive vertical and horizontal coordination across organizations, domains and any number of enclaves (dynamically configured), both in real-time and asynchronously. Copyright 2009, All Rights Reserved

With any sophisticated Cyber attack, enclave level or even domain level awareness may not be enough to detect, monitor, manage or respond to events.

Most Cyber Security collaboration now involves some top-down communication or guidance and some delayed bottom-up incident reporting. However, this level of vertical coordination is inconsistent and incomplete.

Cyber Federation involves comprehensive vertical and horizontal coordination across organizations, domains and any number of enclaves (dynamically configured), both in real-time and asynchronously.

CCS Practice 2 – Cyber NETOPS

Cyber NETOPS Defined Traditional NETOPS encompasses a wide range of network security issues (and architecture). Cyber NETOPS must also necessarily include all Information Assurance issues (the network content) as well as network management. Cyber NETOPS must be viewed symbiotically within the context of specific missions that individual (and combined) organizations support. Cyber NETOPS is where we help to transition existing (legacy) architectures and capabilities into a new, expanded view Cyber Security management. Copyright 2009, All Rights Reserved

Traditional NETOPS encompasses a wide range of network security issues (and architecture).

Cyber NETOPS must also necessarily include all Information Assurance issues (the network content) as well as network management.

Cyber NETOPS must be viewed symbiotically within the context of specific missions that individual (and combined) organizations support.

Cyber NETOPS is where we help to transition existing (legacy) architectures and capabilities into a new, expanded view Cyber Security management.

The CCS Practice - Value Proposition The CCS Practice meets today’s security challenges while preparing you for tomorrow’s dynamic environment. Cyber Security is often viewed as something separate from the rest of the enterprise, we understand that the security architecture and management paradigm must be unified with all other IT capabilities. The CCS practice is specifically designed to transform current IA & NETOPs infrastructures to make them compliant with emerging national standards & expectations. The CCS practice is designed with the expectation for interoperability & coordination, from the beginning … Copyright 2009, All Rights Reserved

The CCS Practice meets today’s security challenges while preparing you for tomorrow’s dynamic environment.

Cyber Security is often viewed as something separate from the rest of the enterprise, we understand that the security architecture and management paradigm must be unified with all other IT capabilities.

The CCS practice is specifically designed to transform current IA & NETOPs infrastructures to make them compliant with emerging national standards & expectations.

The CCS practice is designed with the expectation for interoperability & coordination, from the beginning …

CCS Practice Contact Information Thank You… For more information, contact: Stephen Lahanas [email_address] Or Joe Alt [email_address] Or Staff Ouderkirk [email_address] Copyright 2009, All Rights Reserved