OCA Event

Interop Demo, Plug Fest, Hackathon

Cybersecurity Automation Workshop

The next Cybersecurity Automation Workshop is scheduled for 2 June 2022 in Washington, D.C. The workshop objective is to demonstrate working interoperating systems that contribute to cybersecurity automation, particularly across different participants, standards, and organizations. It will involve a series of demonstrations – some live, some tabletop – touching various interworking scenarios. A certain amount of hackathon activity will also take place to add missing lycans and/or fix bugs to further enhance this interworking environment. 

OASIS work involved in the workshop includes: OCA PACE, OASIS OpenC2, OASIS TAC, OASIS CACAO, and OASIS CSAF. Additional work projects may be added. 

Ways to participate: 

OCA Event

Automating the Hunt for Advance Threats

OCA Kestrel Project on the Agenda

Threat hunting has traditionally been a manual process, in which a security analyst sifts through various data information using their own knowledge and familiarity with the network to create hypotheses about potential threats. With technology advancements, threat hunting is now an iterative, continuous process that 1) searches for indicators of compromise in organizational systems, and 2) detects, tracks, and disrupts threats that evade existing controls. Join SC Media April 12-13 as we bring together a group of cybersecurity experts who will share presentations and discussions on topics such as:

  • Establishing and maintaining a threat hunting capability
  • Threat hunting methodologies, tools, and tips
  • Leveraging and creating threat intelligence for your organization

Free to attend for OASIS members. View Recording here.

OCA Event

Can ‘best of breed’ security tools be orchestrated?

Most organizations are struggling with security complexity, underutilized tools, too many alerts, and too few resources – in an environment where cyberattacks are constantly increasing. At the time of acquisition, your team believed that each ‘best of breed’ tool was the solution to the precise problem. Before you knew it, most enterprises have one or more SIEM, SOAR, EDR, MDR, NDR, CDR, and/or XDR products in the environment. Increasing the number of tools led to diminishing tool performance, not due to misrepresentation from tool manufacturer but mostly because of limited or no interoperability. While each of these solutions has a purpose, it is important to understand the big picture of SOC operations to see how these individual jigsaw pieces come together to solve the puzzle.

Join us for a panel discussion on March 16, with industry analyst Fran Howarth, Security practice leader at Bloor Research, and other cybersecurity experts as they share practical guidance on what SOC operations teams can do to better protect themselves by orchestrating and interoperating new and existing cyber tools.

OCA Event

RSA Conference 2022

OCA Breakfast BoF

RSA Conference is where the cybersecurity world comes together. For four days, you’ll gain insights, join conversations and experience solutions that could make a huge impact on your organization and your career. RSA Conference itself is transforming, too. We’re excited to be back in San Francisco, but we’re just as excited to offer a digital option as well. However you experience RSAC 2022, you’ll come away with knowledge and insights that will spark ideas and help you make the game-changing decisions that will transform the way you protect the world from threats.

Event will be held in-person. Members can use our OASIS code – 12UOASISFD – to receive an extra $150 off the conference rate. Direct link to discount.

All are welcome to join us for an Open Cybersecurity Alliance Breakfast BoF on Wednesday, 8 June from 8:00-9:30 AM PDT.

OASIS Virtual Event

Indicators of Behaviour: How Can We Communicate and Collaborate on Them

During this first “OCA Community Forum,” we’ll tackle the topic of Indicators of Behaviour or IoBs. OCA Board Co-Chair, Jason Keirstead of IBM, will be joined by Lodrina Cherne from Cybereason to review:

  • What is an IoB, and how it differs from an Indicators of Attack (IoA) and Indicators of Compromise (IoC)?
  • How can (and should) an IoB be used by security practitioners, what outcomes are they used for?
  • Whether cybersecurity products should exchange IoBs? Assuming so, how would and should that work?
  • How the Open Cybersecurity Alliance plans to formulate a point of view around them.
OASIS Virtual Event

New Project Joins Budding Open Cybersecurity Ecosystem — NIST SCAP v2

Over the last year, the Open Cybersecurity Alliance (OCA) has been working to develop open source content, code, tooling, practices, and patterns that will improve the interoperability of cybersecurity solutions and help solve security complexity and redundancy for clients. During this webinar your hear an update on how OCA is progressing on product interoperability. In addition, OCA just accepted a third project from NIST. This project, the SCAP (Security Content Automation Protocol) Data Collection Prototype, was highlighted as it joins current projects STIXShifter and OpenDXL Ontology.

This is an opportunity for you to learn how OCA plans to bring interoperability across these projects and associated products. With a draft architecture defined, now is the time to learn how you can join in and help the Alliance evolve our architecture and projects.

No results with the selected filters