Download to read offline
![‹#›
The ART of Cyber Strategy
Attribution - tracing the network of origin (vice the routing
networks) of attack vectors, as well as determining the
identity of the attacker
Rules of engagement - metrics for mission risk exposure for a
particular cyber event, and how to determine the appropriate
level (e.g., time, magnitude & duration) of the response
action [retaliation]
Trust Relationships - dynamic assessment and assignment of
trust levels for domestic and international collaborative &
sharing offer the greatest fidelity for determining current and
future actions
Dr. Gil Duval, CEO Data Security Storage, LLC
6](https://image.slidesharecdn.com/ecc2cf36-eeac-492c-9716-2bbd36608c82-160305174823/75/Resiliency-Part-Two-11-3-2015-copy-6-2048.jpg)
Uploaded byDr Robert D. Childs
Resiliency-Part Two -11-3-2015 copy
The document discusses cyber resiliency and defense. It outlines cyber defense goals of protecting systems through policies and tools, detecting incidents through monitoring, and correcting issues to continue operations. When analyzing attacks, organizations should focus on compliance, response, forensics, and continuing operations. Key challenges include lack of awareness, poor practices, and late attack identification. Required actions involve having continuity plans, identifying critical assets, monitoring networks, and sharing information. The document advocates for attributing attacks, establishing engagement rules, and building trust relationships for effective cyber strategy.
Resiliency-Part Two -11-3-2015 copy
- 1. ‹#› CYBER RESILIENCY: fromPrevention to Recovery (Part 2) 10 Dec 2015 Dr. Robert D. Childs President & CEO, iCLEAR LLC Former Chancellor, National Defense University (NDU) iCollege and Deputy to NDU President for Cyber and Information
- 2. ‹#› Cyber Defense Goals •Protect (policies/governance/rules/tools/educate) • Detect (monitor/incident response/shift site/network • Correct (continue ops/recover/lessons learned) 2
- 3. ‹#› Analyzing an Attack •Compliance/audit • Response (recover, correct, inform) • Forensics (determine cause, sequence of events, entry points, type, motivation) • CONTINUE OPERATIONS !!! 3
- 4. ‹#› 4 Cyber Defense Challenges •Unawareness of the threats • Poor computer hygiene practices • Lack of policies/governance/rules/procedures • Varying network protocols/monitoring • Late identification of attacks • No continuity of operations plan
- 5. ‹#› • Have aCOOP • Identify mission critical activities • Know your partners and supply chain • Validate software/apps • Monitor networks • Establish policies/rules regarding BYOD • Share information (cooperation) • Test (exercises) • Be proactive/agile/adaptive Required Actions 5
- 6. ‹#› The ART ofCyber Strategy Attribution - tracing the network of origin (vice the routing networks) of attack vectors, as well as determining the identity of the attacker Rules of engagement - metrics for mission risk exposure for a particular cyber event, and how to determine the appropriate level (e.g., time, magnitude & duration) of the response action [retaliation] Trust Relationships - dynamic assessment and assignment of trust levels for domestic and international collaborative & sharing offer the greatest fidelity for determining current and future actions Dr. Gil Duval, CEO Data Security Storage, LLC 6
- 7. ‹#› Continuity of OperationsPlan • Build strong relationships (trust) • Encourage information sharing/collaboration) • Innovate & leverage technology • Integrate end-to-end strategy (across enterprise) • Introduce national cyber legislation • Establish defensible architecture (suite of technologies) • Explore Cyber Assurance-as-a-Service 7
- 8. ‹#› Contact Dr. Robert D.Childs President & CEO, iCLEAR LLC Former Chancellor, National Defense University(NDU) iCollege and Deputy to the NDU President for Cyber and Information e-mail: Childs@iclearllc.com iCLEAR LLC website: http://iclearllc.com