http://sei.cmu.edu/feeds/tag/Updates on changes and additions to the SEI Blog for posts matching Network Situational Awarenessen-usMon, 08 Feb 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/how-situational-awareness-informs-cybersecurity-operations/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSituational awareness (SA) helps decision makers throughout an organization have the information and understanding they need to make sound decisions about cybersecurity operations. In this blog post, I review and provide examples of how to use SA in cybersecurity operations.Nathaniel RichmondMon, 08 Feb 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/how-situational-awareness-informs-cybersecurity-operations/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational Awarenesshttps://www.sei.cmu.edu/blog/pandemic-home-security-for-your-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe COVID-19 pandemic has greatly increased remote work among enterprise employees. Home-network environments are not professionally managed, so they are an appealing target for attackers. In this post, we advise how to mitigate these risks to regain a security footing.Phil Groce, Harry CaskeyMon, 25 Jan 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/pandemic-home-security-for-your-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/remote-work-vulnerabilities-and-threats-to-the-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesHow has this change in the way we work altered our security posture? How has it changed our attack surface, and what should we be doing to defend it? In this blog post, I explore the answers to these questions.Phil GroceMon, 18 Jan 2021 00:00:00 -0500https://www.sei.cmu.edu/blog/remote-work-vulnerabilities-and-threats-to-the-enterprise/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessBest Practices in Network Securityhttps://www.sei.cmu.edu/blog/is-your-organization-using-cybersecurity-analysis-effectively/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post explores how organizations can effectively use cybersecurity analysis and discusses the importance of an effective incident response plan.Angela HornemanMon, 31 Aug 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/is-your-organization-using-cybersecurity-analysis-effectively/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessCybersecurityhttps://www.sei.cmu.edu/blog/situational-awareness-cybersecurity-architecture-5-recommendations/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this post on situational awareness for cybersecurity, we present five recommendations for the practice of architecture in the service of cybersecurity situational awareness (SA)....Phil GroceMon, 13 Jul 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/situational-awareness-cybersecurity-architecture-5-recommendations/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/situational-awareness-for-cyber-security-architecture-tools-for-monitoring-and-response/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVisibility into the activities within assets enables network security analysts to detect network compromises. Analysts monitor these activities directly on the device....Timothy ShimeallMon, 11 May 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/situational-awareness-for-cyber-security-architecture-tools-for-monitoring-and-response/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-architecture-network-visibility/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork compromises cannot be detected without visibility into the activities within assets. Network security analysts can view these activities in one of two places....Timur SnokeMon, 23 Mar 2020 00:00:00 -0400https://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-architecture-network-visibility/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/engineering-for-cyber-situational-awareness-endpoint-visibility/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this post, we aim to help network security analysts understand the components of a cybersecurity architecture, starting with how we can use endpoint information....Phil Groce, Timur SnokeMon, 10 Feb 2020 00:00:00 -0500https://www.sei.cmu.edu/blog/engineering-for-cyber-situational-awareness-endpoint-visibility/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-three-key-principles-of-effective-policies-and-controls/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity measures are most effective when it is clear how assets are supposed to be used and by whom....Angela HornemanMon, 18 Nov 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-three-key-principles-of-effective-policies-and-controls/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSituational AwarenessNetwork Situational Awarenesshttps://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-assets-and-risk/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesWhen key business assets are not adequately protected from cybersecurity breaches, organizations can experience dire consequences....Angela Horneman, Lauren CooperWed, 16 Oct 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-assets-and-risk/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/managing-the-risks-of-ransomware/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesRansomware poses a growing threat to both businesses and government agencies. Though no strategy can fully eliminate these risks, this post provides recommendations....David Tobar, Jason FrickeFri, 11 Oct 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/managing-the-risks-of-ransomware/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessCyber MissionsBest Practices in Network SecuritySituational Awarenesshttps://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-an-introduction/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSituational awareness (SA) helps decision makers throughout an organization have the information and understanding available to make good decisions in the course of their work....Angela HornemanMon, 09 Sep 2019 00:00:00 -0400https://www.sei.cmu.edu/blog/situational-awareness-for-cybersecurity-an-introduction/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/evaluating-threat-modeling-methods-for-cyber-physical-systems/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAddressing cybersecurity for a complex system, especially for a cyber-physical system of systems (CPSoS), requires a strategic approach during the entire lifecycle of the system....Nataliya ShevchenkoMon, 04 Feb 2019 00:00:00 -0500https://www.sei.cmu.edu/blog/evaluating-threat-modeling-methods-for-cyber-physical-systems/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity-Related RequirementsOCTAVECyber Risk and Resilience ManagementNetwork Situational AwarenessEnterprise Risk and Resilience ManagementCyber MissionsThreat Modeling Best Practices in Network SecurityRiskCyber-Physical SystemsCritical Infrastructure Protectionhttps://www.sei.cmu.edu/blog/threat-modeling-12-available-methods/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesAlmost all software systems today face a variety of threats, and the number of threats grows as technology changes....Nataliya ShevchenkoMon, 03 Dec 2018 00:00:00 -0500https://www.sei.cmu.edu/blog/threat-modeling-12-available-methods/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesVulnerability AnalysisSecurity-Related RequirementsOCTAVECyber Risk and Resilience ManagementNetwork Situational AwarenessEnterprise Risk and Resilience ManagementCyber MissionsThreat Modeling Best Practices in Network SecurityRiskCyber-Physical SystemsCritical Infrastructure Protectionhttps://www.sei.cmu.edu/blog/cache-poisoning-of-mail-handling-domains-revisited/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn 2014 we investigated cache poisoning and found some in some damaging places, like mail-handling domains. It can't be assumed behaviors on the internet continue unchanged....Leigh MetcalfWed, 20 Jun 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/cache-poisoning-of-mail-handling-domains-revisited/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessSituational Awarenesshttps://www.sei.cmu.edu/blog/12-risks-threats-vulnerabilities-in-moving-to-the-cloud/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesOrganizations continue to develop new applications in or migrate existing applications to cloud-based services. The federal government recently made cloud-adoption a central tenet of its IT modernization strategy....Timothy MorrowMon, 05 Mar 2018 00:00:00 -0500https://www.sei.cmu.edu/blog/12-risks-threats-vulnerabilities-in-moving-to-the-cloud/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessBest Practices in Network SecurityCloud ComputingSituational Awarenesshttps://www.sei.cmu.edu/blog/declaring-war-on-cyber-terrorismor-something-like-that/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBuzzwords are a mainstay in our field, and "cyberterrorism" currently is one of the hottest. But how does the definition of "terrorism" change when adding the complexities of the Internet? What does the term "cyber terrorism" actually mean?Leigh Metcalf, Deana Shick, Eric HatlebackThu, 01 Feb 2018 00:00:00 -0500https://www.sei.cmu.edu/blog/declaring-war-on-cyber-terrorismor-something-like-that/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity VulnerabilitiesSituational AwarenessNetwork Situational AwarenessCyber MissionsCERT/CChttps://www.sei.cmu.edu/blog/improving-data-extraction-from-cybersecurity-incident-reports/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis SEI Blog post is the first in a series on improving useful data extraction from cybersecurity incident reports, focusing on work done by the SEI and US-CERT.Samuel PerlFri, 29 Sep 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/improving-data-extraction-from-cybersecurity-incident-reports/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesNetwork Situational AwarenessCyber MissionsSituational Awarenesshttps://www.sei.cmu.edu/blog/ransomware-best-practices-for-prevention-and-response/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesOn May 12, 2017, in the course of a day, the WannaCry ransomware attack infected nearly a quarter million computers. WannaCry is the latest in....Alexander Volynkin, Angela Horneman, José MoralesWed, 31 May 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/ransomware-best-practices-for-prevention-and-response/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBest Practices in Network SecurityCyber MissionsNetwork Situational AwarenessRansomwareSituational Awarenesshttps://www.sei.cmu.edu/blog/best-practices-for-network-border-protection/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesWhen it comes to network traffic, it's important to establish a filtering process that identifies and blocks potential cyberattacks...Rachel KartchMon, 15 May 2017 00:00:00 -0400https://www.sei.cmu.edu/blog/best-practices-for-network-border-protection/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesBest Practices in Network SecurityCyber MissionsNetwork Situational AwarenessSituational Awareness