Addressing cyber gaps with automation and orchestration

Cybersecurity

Addressing cyber gaps with automation and orchestration

  • By Sara Friedman
  • Jan 29, 2018

Although automated tools are taking on a larger role in helping  agencies manage their increasingly complex network security requirements,  humans are still a critical part of the production.

Paul Beckman, deputy chief information security officer at the Department of Homeland Security, said he thinks artificial intelligence-based automation can help his agency fill in 70 to 80 percent of the gaps that exist in its cyber strategy.

“Machines still aren’t there yet," Beckman said at the Jan. 29 Institute for Critical Infrastructure Technology Winter Summit.  They can't identify a cat or a street sign, so we still need humans' unique ability for orchestration – the integration of cybersecurity efforts to enable automated incident response. “The human is the one orchestrating all of those [tools and platforms] together to make an interactive and efficient tool,” he said.

Department of Defense agencies have seen benefits of using automation and orchestration to connect new devices to their networks.  The “comply-to-connect” framework isolates new systems or devices when they are plugged into DOD networks until automation tools scan the device, load necessary patches and set up needed security protocols before registering it onto the network.

“Many of us only see 70 percent of network traffic,” Ray Letteer, chief of the Marine Corps’ Cybersecurity Division, said.  “Automation will [allow] us to be able map and track it.”

Through “comply-to-connect,” Letteer said he was eventually able to see 100 percent of the devices and systems that connected to his network.

But mobile devices complicate security even more for agencies.

“In an increasingly mobile world, you can’t use smart cards for multi-factor authentication, so you need to use other forms of identification like leveraging biometrics with touch ID or receiving a push notification,” Centrify CEO Tom Kemp told GCN.  “There is a growing awareness of these technologies, but a lot more work needs to be done.”

The move to MFA has enabled more agencies to work in a zero-trust environment where all users seeking network access must be verified every single time.

“The mobile environment requires a platform that allows for speed and scale,” Chase Cunningham, principal analyst at Forrester Research, told GCN.  “Controlling access is critical because … you have people using networks, and you need to control what they have access to.”


About the Author

Sara Friedman is a reporter/producer for GCN, covering cloud, cybersecurity and a wide range of other public-sector IT topics.

Before joining GCN, Friedman was a reporter for Gambling Compliance, where she covered state issues related to casinos, lotteries and fantasy sports. She has also written for Communications Daily and Washington Internet Daily on state telecom and cloud computing. Friedman is a graduate of Ithaca College, where she studied journalism, politics and international communications.

Friedman can be contacted at sfriedman@gcn.com or follow her on Twitter @SaraEFriedman.

Click here for previous articles by Friedman.


Let's block ads! (Why?)



from All Articles and Blogs http://ift.tt/2Fyx1N7
via Defens News

Comments

  1. danlighterApril 27, 2018 at 8:22 AM

    Nice blog... Incident Response Orchestration empowers organizations to automatically respond to security alerts. Thanks for sharing

    ReplyDelete

Post a Comment

Popular posts from this blog

The Oryx Handbook of Iranian Drones

Image
The goal of this list is to comprehensively catalogue Iran's past and current inventory of unmanned aerial vehicles (UAVs) and their armament. In an effort to streamline the list and avoid unnecessary confusion, this list only includes military drones associated with Iran's defence industry or military-grade UAVs with at least some chance of entering service. Notes:  - If several configurations of a drone with one designation are known, they are added as such.  - The part within the apostrophes refers to other designations or an unofficial designation. -  UAVs that did not enter service or have yet to enter service have been placed in the prototype category. - When a type is dual-capable, it is added in both respective categories. - Dubious claims are referred to as ''claimed to be capable''. - Although several types of Iranian UAVs have been sighted in Syria and Iraq, the foreign service section of this handbook only includes those confirmed to be in s
Read more

This Equation Shows You Can't Quantify Everything

Image
Yeah, I used a clickbaity headline. So sue me. Recently I went on an extensive rant about the fundamental assumptions of science. One of them, I said, was that things have to be measurable. And that's basically true, I think... but there are interesting subtleties. You might well be familiar with the weirdness of the quantum realms, as in the double-slit experiment where "particles" can apparently be in two places at once. What you might be less aware of is that much, much larger things can be just as hard to measure. You really don't need carefully controlled laboratory conditions to see how bizarre reality can get. Measuring some things is hard... In astronomy, if you're hunting for galaxies in a new data set, you have to try and estimate these things called completeness and reliability . They're quite simple concepts but they have very strict meanings - thankfully, for once, quite intuitive ones. Consider a naturalist trying to identify some meerk
Read more

Andrew Wyeth: Home Places

Image
  THE BRANDYWINE   FEBRUARY 4–JULY 13, 2023 Andrew Wyeth, Swifts – First Version, 1991, watercolor on paper. Collection of the Wyeth Foundation for American Art B3122r © Andrew Wyeth/Artists Rights Society (ARS)  Opening at the Brandywine Museum of Art on February 4, 2023,  Andrew Wyeth: Home Places  presents nearly 50 paintings and drawings of local buildings that inspired Wyeth time and again over seven decades of his career. The artworks in this exhibition are drawn exclusively from the nearly 7,000-object Andrew and Betsy Wyeth Collection of the Wyeth Foundation for American Art, now managed by the Brandywine. Many of these pieces have never before been exhibited, offering a first glimpse at a significant treasure trove that will shed new light on the collaborative creative process of Andrew and Betsy Wyeth. Andrew Wyeth, Widow’s Walk Study, 1990, watercolor and pencil on paper. Collection of the Wyeth Foundation for American Art B3144 © Andrew Wyeth/Artists Rights Socie
Read more