Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
Report
Dinis CruzFollow
Chief Scientist at Glasswall and CISO at Holland and BarrettSep. 23, 2019•0 likes•2,242 views
Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
Sep. 23, 2019•0 likes•2,242 views
Download to read offline
Report
Technology
This is the Lightning Talk I delivered at OWASP Chapter London in September 2019
Dinis CruzFollow
Chief Scientist at Glasswall and CISO at Holland and BarrettRecommended
Making fact based decisions and 4 board decisions (Oct 2019)Dinis Cruz
Glasswall - Safety and Integrity Through Trusted FilesDinis Cruz
Dinis Cruz (CV) - CISO and Transformation Agent v1.2Dinis Cruz
Serverless Security Workflows - cyber talks - 19th nov 2019Dinis Cruz
CISO Application presentation - Babylon health securityDinis Cruz
(OLD VERSION) Dinis Cruz (CV) - CISO and Transformation Agent v0.6 Dinis Cruz
More Related Content
Slideshows for you
October 2020 meetupDaliya Spasova
Keynote session – Mitigate risks and stay compliant with Chris Bridgland and ...Veritas Technologies LLC
What is the Future of SIEM? Elasticsearch
VSD Zurich 2018: The Data OpportunityVeritas Technologies LLC
The Journey from Zero to SOC: How Citadel built its Security Operations from ...Elasticsearch
Forcepoint: Technická opatření pro ochranu osobních údajů (a citlivých dat) z...MarketingArrowECS_CZ
![[Japan Tech summit 2017] SEC 003](https://cdn.slidesharecdn.com/ss_thumbnails/techsummit2017pdfsec003-171116035500-thumbnail.jpg?width=2048&height=1162&fit=bounds)
Similar to Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
Global IoT Cloud Services Survey-Aug-20160527August Lin
Cloud Computing for Business - The Road to IT-as-a-ServiceJames Urquhart
Appcelerator iPhone/iPad Dev Con 2010 San Diego, CAJeff Haynie
iPhone/iPad Development with TitaniumAxway Appcelerator
Power BI dataflows と Power Platform Data Integration の使いどころYugo Shimizu
Introducing the Vitis Unified Software Platform for Programming FPGAsinside-BigData.com
More from Dinis Cruz
Map camp - Why context is your crown jewels (Wardley Maps and Threat Modeling)Dinis Cruz
Glasswall - How to Prevent, Detect and React to Ransomware incidentsDinis Cruz
Using Wardley Maps to Understand Security's Landscape and StrategyDinis Cruz
GSBot Commands (Slack Bot used to access Jira data)Dinis Cruz
OSBot - Data transformation workflow (from GSheet to Jupyter)Dinis Cruz
Jira schemas - Open Security Summit (Working Session 21th May 2019)Dinis Cruz
Recently uploaded
Daily Scrum, Sprint Review & Retrospective.pptxMd. Rakib Trofder
Welcome and State of Apache CloudStack CommunityShapeBlue
Future of Virtual realitymdpavel4
NoSQL Data Migration Masterclass - Session 1 Migration Strategies and ChallengesScyllaDB
CloudStack Managed User-data & DemoShapeBlue
GDSC23 SAC - Info Session GDSC.pptxSAC
Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions
- Using OWASP Security Bot (OSBot) to make Fact Based Security Decisions Sep 2019, @DinisCruz Lightning talk (15m)
- What can OSBot do for me?
- Make sense of reality
- Be your friend (that automates you)
- Graph your CISO’s world
- CLI (Command Line Interface) to your data
- REPL your world (Read Evaluate Print Loop)
- Threat Models (in a scalable way)
- DataScience your data
- Screenshots of OWASP Pages
- Screenshots of Jira issues
- Graph project’s to outcomes and threats
- Incident workflow automation Real-word example
- Workflow Person Credentials Application uses to access conditions generate Alert acknowledged in Slack by entered in action updates status of alert in
- Slack as UI , Jira as Database
- Jira as (graph) database
- Ask user if they were the ones login in https://twitter.com/DinisCruz/status/1153591757290057733
- GSBot Commands
- graph expand GSP-181 1 delivers,is needed by graph expand GSP-181 2 delivers,is needed by
- graph expand GSP-181 3 delivers,is needed by graph expand GSP-181 3 delivers,is needed by,fixes,achieves
- Security Team Data Science Tech Stack
- Serverless stack
- Scalable data creation workflow
- JIRA
- Elastic (ELK)
- Slack
- Jupyter notebooks
- Other Key Components
- Jira Schema
- Create schema that represents the business
- Map reality
- Workflow everything
- Risk workflows
- Scale using Workflows RISK Workflow VULN Workflow
- Global Dashboards that actually are FACT based
- Hyperlinked RISKs (from R1s to R4s to V1s to V3s)
- Modern approach to managing security RISKs https://www.soa.org/globalassets/assets/Files/Research/Projects/research-new-approach.pdf
- Linked Security Policies = Fact based Security Decisions
- Hyperlinked policies in Jira Policy’s pdfs do not scale because it is not possible to link real-world data to the respective policy
- Convert policy into an graph
- Policies Links to Facts Links to Vulns Links to Risks
- Context specific Jira projects (for example FACTs)
- Wardley Maps
- Meet Simon ….
- Using Wardley Maps on Healthcare https://wardle.org/strategy/2018/07/19/mapping.html
- Maps help to visualise strategy (and bias)
- Metadata use in Maps is very powerful https://medium.com/@erik_schon/the-art-of-strategy-811c00a96fad
- Advanced Wardley Mapping
- Create Wardley maps using OSBot
- OSBot via Jupyter
- Where is the code?
- How do I learn more?
- Jon Hawes BSides Vegas 2019 presentation https://www.slideshare.net/JonHawes3/building-an-enterprise-security-knowledge-graph-to-fue l-better-decisions-faster
- Other presentations (in slideshare) https://www.slideshare.net/DinisCruz/creating-a-graph-based-security-organisation-apr-2019-owasp-london- chapter-meeting https://www.slideshare.net/DinisCruz/osbot-data-transformation-workflow-from-gsheet-to-jupyter-156132054https://www.slideshare.net/DinisCruz/osbot-jira-data-import-from-gsheet-to-jira-via-jupyter-v09 https://www.slideshare.net/DinisCruz/gsbot-commands-slack-bot-used-to-access-jira-data
- Thanks