Network Situational Awareness
Blog Posts
How Situational Awareness Informs Cybersecurity Operations
Situational awareness (SA) helps decision makers throughout an organization have the information and understanding they need to make sound decisions about cybersecurity operations. In this blog post, I review and …
Read More•By Nathaniel Richmond
In Situational Awareness
Pandemic Home Security for Your Enterprise
The COVID-19 pandemic has greatly increased remote work among enterprise employees. Home-network environments are not professionally managed, so they are an appealing target for attackers. In this post, we advise …
Read More•By Phil Groce, Harry Caskey
In Situational Awareness
Remote Work: Vulnerabilities and Threats to the Enterprise
How has this change in the way we work altered our security posture? How has it changed our attack surface, and what should we be doing to defend it? In …
Read More•By Phil Groce
In Situational Awareness
Is Your Organization Using Cybersecurity Analysis Effectively?
This SEI Blog post explores how organizations can effectively use cybersecurity analysis and discusses the importance of an effective incident response plan.
Read More•By Angela Horneman
In Situational Awareness
Situational Awareness for Cybersecurity Architecture: 5 Recommendations
In this post on situational awareness for cybersecurity, we present five recommendations for the practice of architecture in the service of cybersecurity situational awareness (SA)....
Read More•By Phil Groce
In Situational Awareness
Situational Awareness for Cyber Security Architecture: Tools for Monitoring and Response
Visibility into the activities within assets enables network security analysts to detect network compromises. Analysts monitor these activities directly on the device....
Read More•By Timothy J. Shimeall
In Situational Awareness
Situational Awareness for Cybersecurity Architecture: Network Visibility
Network compromises cannot be detected without visibility into the activities within assets. Network security analysts can view these activities in one of two places....
Read More•By Timur D. Snoke
In Situational Awareness
Engineering for Cyber Situational Awareness: Endpoint Visibility
In this post, we aim to help network security analysts understand the components of a cybersecurity architecture, starting with how we can use endpoint information....
Read More•By Phil Groce, Timur D. Snoke
In Situational Awareness
Situational Awareness for Cybersecurity: Three Key Principles of Effective Policies and Controls
Security measures are most effective when it is clear how assets are supposed to be used and by whom....
Read More•By Angela Horneman
In Situational Awareness
Situational Awareness for Cybersecurity: Assets and Risk
When key business assets are not adequately protected from cybersecurity breaches, organizations can experience dire consequences....
Read More