Hello, Guest!
  • Saturday, April 27, 2024

Corelight’s Brian Dye: Data-Driven Approach, Open Source Tools Key to Building Defensive Cyber Program


Brian Dye

Brian Dye, chief product officer at cybersecurity firm Corelight, has said agencies should implement data-driven security approach and open source-based tools to protect their networks from cyber attacks. Dye wrote that some federal agencies have shifted toward that approach with the use of an open-source network analysis framework called Zeek and the Risk Management Framework of the National Institute of Standards and Technology.

“For a high-level, strategic view, agencies need to have all three of those bases covered. If they don’t, it will take significantly longer to find threats, and some won’t be discovered. That puts organizations in the difficult position of not knowing what they don’t know,” Dye said.

He said data-centric security makes use of the “right data” and that there are three data sources agencies can leverage: threat intelligence, the network and the endpoint. Dye discussed how Community ID could help agencies identify a network flow across security platforms as well as the potential benefits of open source tools to agencies.

“Open source-based tools are crucial for ensuring that agencies have good data to work with when building a defensive program,” he said. “Such tools provide data that is adaptable, extensible and often irreplaceable. If the right information isn’t in the raw data, no amount of post-processing or analytics will ever compensate for that.”

Video of the Day

Related Articles

Lt. Gen. Robert Skinner Provides Exclusive Insights on Thunderdome, DOD’s New Cyber Platform Cybersecurity

Lt. Gen. Robert Skinner Provides Exclusive Insights on Thunderdome, DOD’s New Cyber Platform

Thunderdome is a new, modernized cybersecurity and technology architecture for the Department of Defense, spearheaded by the Defense Information Systems Agency. It is part of the Pentagon’s official zero trust strategy, as mandated by President Biden’s Executive Order and concretized in the DOD’s Nov. 2022 zero trust strategy. Thunderdome gained promising traction in 2023, with more

Geoffrey Thome Promoted to Serco Inc. VP of Cloud & Networks Executive Moves

Geoffrey Thome Promoted to Serco Inc. VP of Cloud & Networks

Geoffrey Thome was elevated to the role of vice president of cloud and networks at Serco Group‘s U.S. business arm, where the information technology leader previously worked as director for over a year. He announced his Serco Inc. VP appointment in a LinkedIn post and will report to the chief information officer of the IT

GDMS’ Chris Brady Shares Top 5 GovCon Trends & How They’re Changing Defense News

GDMS’ Chris Brady Shares Top 5 GovCon Trends & How They’re Changing Defense

C5ISR is shaping today’s battlefield. As the Department of Defense’s JADC2 initiative moves forward, connectivity, security and speed in the defense landscape are growing ever more critical to fighting and winning conflicts of the future. Chris Brady, president of General Dynamics Mission Systems, revealed five of the top command, control, computers, communications, cyber, intelligence, surveillance