Cyber security operations centre: Security monitoring for protecting business and supporting cyber defense strategy

2015 ◽  
Author(s):  
Cyril Onwubiko
Keyword(s):  
Cyber Security ◽  
Cyber Defense ◽  
Security Monitoring ◽  
Defense Strategy ◽  
Security Operations

scholarly journals THE INFORMATION SYSTEM CYBERSECURITY CONCEPT OF THE STATE BORDER GUARD SERVICE OF UKRAINE AT THE MODERNIZATION STAGE

2019 ◽  
pp. 3-10
Author(s):  
Mykhailo Strelbitskyi
Keyword(s):  
Information System ◽  
Information Systems ◽  
Cyber Security ◽  
General Tendency ◽  
Functional Dependencies ◽  
Cyber Defense ◽  
Average Probability ◽  
Properties Of Information ◽  
Weighted Probability ◽  
The Given

The article analyzes the functions of the Border Guard Service of Ukraine and its information systems. It is determined that the modernization of the components of the integrated information system causes a violation of the existing system of cyber defense. The analysis of existing approaches to ensuring the protection of information in information systems has shown a sufficiently deep study of research separately for each information system. However, unexperienced features of the interaction of these systems remain, in particular, with the modernization of certain information systems in terms of providing cyber defense in general. The process of modernization of information systems is carried out according to individual components of the system or complex and requires their coordination in the process of joint operation. The article gives the justification of modernization strategies according to the groups of criteria: the level of cyber security, the peculiarities of the functioning of information systems. It is noted that the value of the probability of violating the properties of the information resource varies over the entire period of modernization. Therefore, to choose the strategy of modernization at the value of probability at any time is not correct. It is necessary to take into account the general tendency of the function of changing this probability. The most expedient is the distribution of this group of criteria into three components of the criteria for the level of cyber security: the normative - the criterion in which the current value of the probability of violating cybersecurity does not exceed the given; average - the criterion for which the average probability of a violation of cybersecurity does not exceed the prescribed; weighted - a criterion for which the average weighted probability of cybersecurity violation will not exceed the given. The article presents functional dependencies for determining the probability of cyber security violations for each of the groups. As a result of the study, it was determined that the priority indicator of the effectiveness of the process of modernizing the information systems of the border agency is the maximum value of the probability of violating the properties of information in the process of modernization

Exploring the Impact of Security Policy on Compliance

2018 ◽  
pp. 256-274 ◽  
Author(s):  
Winfred Yaokumah ◽  
Peace Kumah
Keyword(s):  
Information Security ◽  
Security Policy ◽  
Structural Equation ◽  
Partial Least Square ◽  
Least Square ◽  
Security Monitoring ◽  
Roles And Responsibilities ◽  
Security Compliance ◽  
Security Operations ◽  
The Impact

Extant studies on compliance with security policies have largely ignored the impact of monitoring, security operations, and roles and responsibilities on employees' compliance. This chapter proposes a theoretical model that integrates security policy, monitoring, security operations, and security roles to examine employees' security compliance. Data were collected from 233 IT security and management professionals. Using partial least square structural equation modelling and testing hypotheses, the study finds that information security policy has significant indirect influence on information security compliance. The effect of security policy is fully mediated by security roles, operations security activities, and security monitoring activities. Security policy strongly influences operations security activities and has the greatest effect on security roles and responsibilities. Among the three mediating variables, monitoring has the most significant influence on security compliance. Conversely, the direct impact of security policy on compliance is not significant.

Pragmatic Solutions to Cyber Security Threat in Indian Context

2017 ◽  
pp. 172-176
Author(s):  
Cosmena Mahapatra
Keyword(s):  
Cyber Security ◽  
Event Management ◽  
Security Threat ◽  
Cyber Defense ◽  
Cyber Terrorism ◽  
Indian Context ◽  
Banking Networks ◽  
Security Information

Recent attacks on Indian Bank customers have exposed the vulnerability of banking networks in India and the ignorance that prevails in the system. Unlike their foreign counterparts Indian banking networks are not aware of solutions easily available in market to counter cyber theft and cyber terrorism. SIEM or Security Information and Event Management is one such solution which could have easily negated these attacks. This chapter focuses on studying various cyber security mechanisms including SIEM for implementation of cyber defense effectively.

Machine Learning Forensics

2021 ◽  
pp. 47-66
Author(s):  
Angad Gupta ◽  
Ruchika Gupta ◽  
A. Sankaran
Keyword(s):  
Machine Learning ◽  
Cyber Security ◽  
Defense Responses ◽  
Cyber Attacks ◽  
Process Data ◽  
Cyber Defense ◽  
High Expectations ◽  
Malicious Activity ◽  
Malicious Behavior ◽  
Normal Behavior

Machine learning (without human interference) can collect, analyze, and process data. In the case of cyber security, this technology helps to better analyze previous cyber-attacks and develop respective defense responses. This approach enables an automated cyber defense system with a minimum-skilled cyber security force. There are high expectations for machine learning (ML) in cyber security, and for good reasons. With the help of ML algorithms, we can sift through massive amounts of security events looking for anomalies, deviations from normal behavior that are often indicative of malicious activity. These findings are then presented to the analyst for review and vetting, and the results of his determination fed back into the system for training. As we process more and more data through the system, it evolves: it learns to recognize similar events and, eventually, the underlying traits of malicious behavior that we're trying to detect. This chapter explores machine learning forensics.

Cyber Defense as a part of Hazard Mitigation: Comparing High Hazard Potential Dam Safety Programs in the United States and Sweden

2016 ◽  
Vol 13 (1) ◽  
Author(s):  
Rosemary A. Burk ◽  
Jan Kallberg
Keyword(s):  
United States ◽  
Cyber Security ◽  
Critical Infrastructure ◽  
Risk Mitigation ◽  
Self Regulation ◽  
Terrestrial Ecosystems ◽  
The United States ◽  
Dam Safety ◽  
Cyber Defense ◽  
Industrial Control Systems

AbstractCyber security tends to only address the technical aspects of the information systems. The lack of considerations for environmental long-range implications of failed cyber security planning and measures, especially in the protection of critical infrastructure and industrial control systems, have created ecological risks that are to a high degree unaddressed. This study compares dam safety arrangements in the United States and Sweden. Dam safety in the United States is highly regulated in many states, but inconsistent over the nation. In Sweden dam safety is managed by self-regulation. The study investigates the weaknesses and strengths in these regulatory and institutional arrangements from a cyber security perspective. If ecological and environmental concerns were a part of the risk evaluation and risk mitigation processes for cyber security, the hazard could be limited. Successful environmentally-linked cyber defense mitigates the risk for significant damage to domestic freshwater, aquatic and adjacent terrestrial ecosystems, and protects ecosystem function.

scholarly journals Cyber Espionage Sebagai Ancaman Terhadap Pertahanan Dan Keamanan Negara Indonesia

2021 ◽  
Vol 1 (1) ◽  
pp. 12-25
Author(s):  
Evi Dwi Hastri
Keyword(s):  
Cyber Security ◽  
Research Method ◽  
Comparative Approach ◽  
National Defense ◽  
Cyber Defense ◽  
Legal Research ◽  
Conceptual Approach ◽  
Cyber Espionage ◽  
The Stability

This research aims to analyze the norms that have a blur (Vague Norm) against Cyber Espionage related to Indonesia's legal ability to accommodate Cyber Espionage attacks. In addition, this study also aims to analyze Indonesia's efforts to overcome the Cyber Espionage attack that could threaten the stability of national defense and security. The type of research in the legal research method used is normative juridical with three problem approaches, namely the Statute Approach, Conceptual Approach, and Comparative Approach. Primary and secondary legal materials that have been collected will be processed through deductive methods and an analysis of legal materials is carried out, namely by systematic interpretation and extentive interpretation. So based on the results of the discussion, then there is a Vague Norm about Cyber Espionage that affects Indonesian law in accommodating. The efforts taken by Indonesia to deal with Cyber Espionage outside of juridical efforts began with the preventive efforts of Cyber Security and Cyber Defense, optimizing the role of the TNI, BIN, and POLRI as national resources in defending the country's defense.

scholarly journals Organizational and legal framework of strengthening state capacities in the field of cyber defense

2021 ◽  
pp. 155-161
Author(s):  
S. KRASNIKOV
Keyword(s):  
Cyber Security ◽  
Legal Framework ◽  
The State ◽  
Military Policy ◽  
Cyber Defense ◽  
Foreign Experience

The issue of providing cyber defense has been detailed. Domestic strategic documents on cyber security and cyber defense are considered. The principles of implementation of the state military policy for the purpose of development of cyber defense potential are fixed. Prospects for the formation of cyber troops in Ukraine are outlined. NATO's approach to the concept and features of cyber defense is revealed. The Turkish experience of providing state cyber defense is highlighted. The prospects of improving the cyber defense potential of our country are identified, taking into account the effective achievements of foreign experience.

Sign in / Sign up

Export Citation Format

Share Document