More than a dozen companies are developing a single standard to detect cyber attacks faster

Initiative involving Amazon (AMZN)Cloudflare, CrowdStrike, IBM (IBM)and okta and sales force (CRM)Among other things, it aims to solve a critical bottleneck in sharing threat information: the different data formats currently in use across multiple cybersecurity tools and products.

According to the companies, this mismatch can lead to a delay in understanding how a cyber attack might occur because data from one tool often has to be converted to a compatible format to work with another tool. This can hinder the analysis of underlying threat data, said Mark Ryland, a senior cybersecurity executive at Amazon Web Services (AWS), the cloud computing arm of Amazon.

“Having a comprehensive view of security-related data across tools is essential for customers to effectively detect, investigate and mitigate security issues,” Ryland said in a statement. “Customers tell us that their security teams spend a lot of time and energy normalizing data across different tools rather than being able to focus on analyzing and responding to risks.”

The new standard – known as the Open Cybersecurity Framework – was announced Tuesday at the Black Hat Cyber ​​Security Conference in Las Vegas. The project is led by AWS, cybersecurity firm Symantec and Splunk, a data analytics company.

“OCSF’s initiative is truly unprecedented,” Erkang Zheng, CEO of cybersecurity firm JupiterOne, said in a statement. “Data normalization before ingestion has been one of the biggest weaknesses for security professionals, and the overall framework proposed by OCSF, backed by common domain knowledge across many security vendors, simplifies this time-consuming step, ultimately enabling better and stronger security for all.” .

The initiative comes as the Biden administration has ramped up outreach to the private sector in hopes of protecting critical infrastructure and other US assets from the wave of cyberattacks. Last month, US officials announced an effort to fill hundreds of thousands of job vacancies in cybersecurity, calling the talent shortage a national security challenge and economic opportunity for the middle class.

Related Posts

Leave a Reply

Your email address will not be published.