CyberOps: Situational Awareness in Cybersecurity Operations

@article{Onwubiko2020CyberOpsSA,
  title={CyberOps: Situational Awareness in Cybersecurity Operations},
  author={Cyril Onwubiko},
  journal={ArXiv},
  year={2020},
  volume={abs/2202.03687}
}
Cybersecurity operations (CyberOps) is the use and application of cybersecurity capabilities to a domain, department, organisation or nation. It is fundamentally to protect digital investments, contribute to national economic wellbeing by providing a safe, secure and conducive environment to conduct business and to protect a nation’s critical national infrastructures and citizens welfare. In this paper, we investigate operational factors that influence situational awareness of CyberOps… 
Zero trust: Never trust, always verify CyberSA
TLDR
A novel approach is presented to help conceptualize and operationalize zero trust and a call for a research agenda is made to expand this model and explore the implications of zero trust in future digital systems.

References

SHOWING 1-10 OF 39 REFERENCES
CoCoa: An Ontology for Cybersecurity Operations Centre Analysis Process
  • Cyril Onwubiko
  • Computer Science
    2018 International Conference On Cyber Situational Awareness, Data Analytics And Assessment (Cyber SA)
  • 2018
TLDR
A cybersecurity operations centre ontology for analysis (CoCoa) is proposed, which aligns to the NIST cybersecurity framework, and is then used to identify how cyber incidents can be realised and detected through ontology-based knowledge graph.
Overview of Cyber Situation Awareness
TLDR
This chapter will define situation awareness in its broadest sense, describe the situation awareness reference and process models, describe some of the applicable processes, and identify a set of metrics usable for measuring the performance of a capability supporting situation awareness.
Situation Awareness for Cyber Defense
TLDR
This paper presents a new approach to cyber situation awareness, taking into account the lessons learned from the way humans process such information, as well as an architecture for cyber SA reasoning.
Understanding Cyber Situation Awareness
TLDR
This paper introduces Cyber SA, provides definitions, examples and discusses applications of situation awareness in the Cyber domain.
Situational Awareness: Examining Factors that Affect Cyber-Risks in the Maritime Sector
TLDR
The factors that affect maritime cyber-risk are explored and popular risk frameworks are examined to see whether important maritime-related elements are unaccounted for.
Functional requirements of situational awareness in computer network security
  • Cyril Onwubiko
  • Computer Science
    2009 IEEE International Conference on Intelligence and Security Informatics
  • 2009
TLDR
Functional attributes of situational awareness in computer network security are discussed: dynamism and complexity, automation, realtime processing, multisource data fusion, heterogeneity, security visualisation, decision control, risk assessment, resolution, forecasting and prediction.
Cyber in War: Assessing the Strategic, Tactical, and Operational Utility of Military Cyber Operations
  • Matthias Schulze
  • Engineering
    2020 12th International Conference on Cyber Conflict (CyCon)
  • 2020
TLDR
The study analyzes a small set of cases where cyber capabilities have been used for military purposes and outlines the potentials and operational restrictions of military cyber operations.
Cyber in War: Assessing the Strategic, Tactical, and Operational Utility of Military Cyber Operations
The study analyzes the use of cyber capabilities in war and conflict situations. The research question is: What good is cyber in war? What is the utility of military cyber operations in conflict
Cyber Security Body of Knowledge
  • Evon M. O. Abu-Taieh
  • Computer Science
    2017 IEEE 7th International Symposium on Cloud and Service Computing (SC2)
  • 2017
TLDR
This research attempts to put basic step and a frame work for cyber security body of knowledge and to allow practitioners and academicians to face the problem of lack of standardization.
Review of Situational Awareness for Computer Network Defense
TLDR
The main purpose of this book is to convey an understanding of the impact of situational awareness on the design of the next generation computer systems, network architectures, and platform infrastructures and makes clear the benefits situational awareness can provide for information security, computer security and computer network defense.
...
...