Join Us For a Cyber Threat Intelligence Meetup During RSA
New Context is hosting a meetup of the Cyber Threat Intelligence working group during the RSA security conference.
Complimentary CTI Lunch and Meetup, 2 March — 12:30PM, San Francisco during RSA security conference
Topic: Have cyber experts reached an agreement on how to share threat data?
Who: 182 experts representing the financial sector, healthcare, utilities, software providers, government, academia and nonprofits believe they have the answer.
This large group of public and private sector organizations and companies have come together to advance three foundational cyber security specs (STIX, TAXII, CybOX) in the OASIS Cyber Threat Intelligence Technical Committee. These three specs will dramatically streamline the analysis of threat data.
– San Francisco, CA
Please be sure to RSVP if you will be attending
STIX (Structured Threat Information Expression) is a language for describing cyber threat information so that it can be analyzed and/or exchanged. TAXII (Trusted Automated Exchange of Indicator Information) defines services and message exchanges that enable organizations to share the information they choose with the partners they choose. CybOX (Cyber Observable Expression) is a language for specifying, capturing, and communicating events or stateful properties that are observable in system and network operations.
The Private Sector Cybersecurity Information Sharing Executive Order states that ‘…entities must be able to share information related to cybersecurity risks and incidents and collaborate to respond in as close to real time as possible. Organizations engaged in the sharing of information related to cybersecurity risks and incidents play an invaluable role in the collective cybersecurity of the United States.’
In order for the directive to be successful the private and public sector must come to an agreement as to the data delivery method used to share the threat data. Come and learn how STIX, TAXII and CyBOX make this collaboration possible, these specs ‘offer a potential two-way street to information sharing that government officials, retailers and Wall Street want more of to fight cybercrimes.’
Take a break from the RSA crowds and join us for a complimentary lunch at DG717, http://www.dg717.com/, a 5 minute walk from Moscone.
This informal session will be led by Richard Struse, Chief Advanced Technology Officer, US Department of Homeland Security and Laurent Liscia, OASIS CEO. Other Committee representatives will also be on hand to field your questions and share their experience.
Andrew Storms is the VP, Product of New Context, an innovator in data security for highly regulated industries. Andrew has over 20 years in IT security, developing products and solutions for utilities, the enterprise and government. He's a project lead for CES-21, a research initiative around automated cybersecurity threat detection and response within electrical utility operational networks, and a Certified Information Systems Security Professional (CISSP.) Andrew is a graduate of the FBI Citizens' Academy, a member of Infragard, and a member of the Open Standards Technical Committee for STIX,TAXII and OpenC2. His past roles include Senior Director of DevOps at CloudPassage and Director of Information, Technology & Security at nCircle.