Practical Cyber Intelligence

More Information
Learn
  • Learn about the Observe-Orient-Decide-Act (OODA) loop and it's applicability to security
  • Understand tactical view of Active defense concepts and their application in today's threat landscape
  • Get acquainted with an operational view of the F3EAD process to drive decision making within an organization
  • Create a Framework and Capability Maturity Model that integrates inputs and outputs from key functions in an information security organization
  • Understand the idea of communicating with the Potential for Exploitability based on cyber intelligence
About

Cyber intelligence is the missing link between your cyber defense operation teams, threat intelligence, and IT operations to provide your organization with a full spectrum of defensive capabilities. This book kicks off with the need for cyber intelligence and why it is required in terms of a defensive framework.

Moving forward, the book provides a practical explanation of the F3EAD protocol with the help of examples. Furthermore, we learn how to go about threat models and intelligence products/frameworks and apply them to real-life scenarios. Based on the discussion with the prospective author I would also love to explore the induction of a tool to enhance the marketing feature and functionality of the book.

By the end of this book, you will be able to boot up an intelligence program in your organization based on the operation and tactical/strategic spheres of Cyber defense intelligence.

Features
  • Intelligence processes and procedures for response mechanisms
  • Master F3EAD to drive processes based on intelligence
  • Threat modeling and intelligent frameworks
  • Case studies and how to go about building intelligent teams
Page Count 316
Course Length 9 hours 28 minutes
ISBN 9781788625562
Date Of Publication 28 Mar 2018
Understanding threat intelligence
Capability Maturity Model – threat intelligence overview
Summary
Purpose of integration – it's just my POV
Core security service basics
Security Operations Center
Capability deep dive – Security Configuration Management
Prelude – integrating like services
Integrating cyber intel from different services
Capability Maturity Model – InfoSec and cyber intel
Collaboration + Capability = Active Defense
Summary
The gap
Another set of eyes
Capability Maturity Model – security awareness
Summary
Setting up camp
Continuous monitoring – the challenge 
Capability Maturity Model – continuous monitoring overview
Capability Maturity Model – continuous monitoring level 2
Summary
Quick review
Overview – incident response
Capability Maturity Model – incident response
Summary
A quick recap
The Common Vulnerability Scoring System calculator
Vulnerability management overview
Capability Maturity Model: vulnerability management – scanning
Capability Maturity Model: vulnerability management – reporting
Capability Maturity Model: vulnerability management – fix
Summary

Authors

Wilson Bautista Jr.

Wilson Bautista Jr. is a retired military officer who is the Director of IT and InfoSec at i3 Microsystems. His expertise is in the domains of InfoSec leadership, policy, architecture, compliance, and risk. He holds multiple InfoSec and IT certifications as well as a master's degree in Information Systems from the Boston University. He's an INTP on the Myers-Brigg Type Indicator test with a Driver-Driver personality. As a practitioner of Agile and SecDevOps, he develops innovative, integrated, enterprise-scale cyber security solutions that provide high value to businesses.