Interop Demo, Plug Fest, Hackathon

Cybersecurity Automation Workshop

The next Cybersecurity Automation Workshop is scheduled for 2 June 2022 in Washington, D.C. The workshop objective is to demonstrate working interoperating systems that contribute to cybersecurity automation, particularly across different participants, standards, and organizations. It will involve a series of demonstrations – some live, some tabletop – touching various interworking scenarios. A certain amount of hackathon activity will also take place to add missing lycans and/or fix bugs to further enhance this interworking environment. 

OASIS work involved in the workshop includes: OCA PACE, OASIS OpenC2, OASIS TAC, OASIS CACAO, and OASIS CSAF. Additional work projects may be added. 

Ways to participate: 

Partner Event

International Conference on the EU Cybersecurity Act

OCA on the Agenda / In-person Event

The 2022 International Conference on the EU Cybersecurity Act has been developed to help standards community prepare for the evolution of risk-based frameworks meant to address market fragmentation in the EU. The EU Cybersecurity Act, now in the early stages of development, will eventually create a wide-ranging, independent European body of cybersecurity regulation as part of the “single digital market” goal. The conference will cover the potential effects on current schemes and regulatory mandates, as well as new potential candidate schemes for key industry verticals such as IoT, cloud, communications, payments, automotive, and more.

OASIS member discount: 20% off the registration pass, use the code 22OASIS20. 

OCA on the Agenda:

The Evolution of Open Security—Beyond Open Standards, What is needed to make open, distributed cybersecurity systems architecture a reality? on Wednesday, 25 May.

Partner Event

2022 Health-ISAC Spring Americas Summit

STIX on the agenda

This conference will give you a chance to connect with over 500 industry attendees and numerous sessions including: Transparency in Risk Documentation, Micro & Nano Segmentation in Cloud Native Design, and Evolving Your Program – Cyber-Physical Security Fusion. It includes 5 general sessions and 35 breakout sessions. All content will be available on-demand to registered attendees. The summit will also allow you access to updated information from industry leaders and connections with sponsors and exhibitors.

STIX Presentation: Leveraging STIX Domain Objects (SDO) and Putting the “Analysis (A)” in ISAC on Thursday, 5 May at 3:05 PM EDT.

H-ISAC restricts attendance to its respective members, potential members, and invited industry and government parties. You can apply to attend here.

Baseline Protocol Event

AmsterBased 2022

Our Baseline Protocol Team is excited to announce plans to hold a developer workshop and networking event as part of Devconnect Amsterdam. Devconnect is a week-long in-person gathering that will feature independent Ethereum events, each with a unique focus.

AmsterBased,’ held on 20 April, will be the combination of formal and informal activities designed to further support and grow our Baseline ecosystem. We expect over 100 developers, industry experts, advisers, and companies to join us at AmsterBased.

All are welcome to participate. You can attend in-person or virtual, join the growing list of sponsors, or form a team to work on a BLIP for a bounty.

Partner Event

Global Call to Action on Emergency Alerting

The objective of the ‘Global Call to Action on Emergency Alerting’ is to scale up efforts to ensure that by 2025 all countries have the capability for effective, authoritative emergency alerting that leverages the Common Alerting Protocol (CAP), suitable for all media and all hazards. 

OASIS Open is among eighteen international organizations, companies and experts (including Vint Cerf) involved in emergency alerting that have endorsed this effort. 

View Recording here.

OASIS Virtual Event

NIEM & OASIS Community Update

NIEM Management Office and OASIS will hold a joint briefing to preview the organization’s charter as NIEM transitions to OASIS Open. The active participation benefits will be highlighted. This event will be held via ZOOM. Registrants will receive a calendar invite with Zoom Meeting details prior to the meeting.

For questions about this event, please contact Dee Schur. Dee is the Open Source and Standards Advocate at OASIS and engages in business development.

OriginBX Event

Use of Blockchain and Confidential Computing Technology to Support Tax and Trade Attestations

CompTIA International Trade Regulation & Compliance, U.S. Customs and Border Protection, and others come together to talk about the use of blockchain for tax and trade attestations. This webinar will include an overview of blockchain and confidential computing including enhanced security of data, transparency for network participants, audit trails, transaction efficiency and smart contracts. The panelists will addressing privacy and confidentiality concerns, advantages of government and industry partnerships and more. OriginBX, an open project dedicated to the development of product and trade data standards for facilitating digital tax and trade attestations, will be featured.

View recording here. Use code: ek87YmC?

OCA Event

Automating the Hunt for Advance Threats

OCA Kestrel Project on the Agenda

Threat hunting has traditionally been a manual process, in which a security analyst sifts through various data information using their own knowledge and familiarity with the network to create hypotheses about potential threats. With technology advancements, threat hunting is now an iterative, continuous process that 1) searches for indicators of compromise in organizational systems, and 2) detects, tracks, and disrupts threats that evade existing controls. Join SC Media April 12-13 as we bring together a group of cybersecurity experts who will share presentations and discussions on topics such as:

  • Establishing and maintaining a threat hunting capability
  • Threat hunting methodologies, tools, and tips
  • Leveraging and creating threat intelligence for your organization

Free to attend for OASIS members. View Recording here.

Partner Event

Open Source 101

Open Source 101 is a one-day conference focusing on the “basics” of open source. Content is generally introductory level in nature and is designed as an “on-ramp” to open source, open tech and the open web for attendees. The goal is to provide enough education and guidance so those attending can effectively contribute to and consume open source and generally operate within an open source environment. The 2022 conference will take place in a virtual format on the 6Connex platform, which is designed to capture and mimic the in-person conference experience as closely as possible. Speakers will deliver 10 minute keynote and 45 minute talks across multiple tracks, including Technologies, Processes, Community and Projects.

Free to attend for OASIS members. Conference recordings are available on YouTube Channel.

Partner Event

FOSS Backstage 2022

OASIS on the Agenda / Hybrid Event

FOSS Backstage is a conference on everything related to governance, collaboration, legal and economics within the scope of FOSS. The event is two days of discussion and learning about non-technical aspects of open source development. Topics include open source project leadership best practices, community management, open source project metrics, open source strategy for enterprise, adopting open source collaboration in corporations, legal matters when dealing with open source and many more.

OASIS member discount available: Use this link or simply use the code OASIS15.

OASIS on the Agenda:

OCA Event

Can ‘best of breed’ security tools be orchestrated?

Most organizations are struggling with security complexity, underutilized tools, too many alerts, and too few resources – in an environment where cyberattacks are constantly increasing. At the time of acquisition, your team believed that each ‘best of breed’ tool was the solution to the precise problem. Before you knew it, most enterprises have one or more SIEM, SOAR, EDR, MDR, NDR, CDR, and/or XDR products in the environment. Increasing the number of tools led to diminishing tool performance, not due to misrepresentation from tool manufacturer but mostly because of limited or no interoperability. While each of these solutions has a purpose, it is important to understand the big picture of SOC operations to see how these individual jigsaw pieces come together to solve the puzzle.

Join us for a panel discussion on March 16, with industry analyst Fran Howarth, Security practice leader at Bloor Research, and other cybersecurity experts as they share practical guidance on what SOC operations teams can do to better protect themselves by orchestrating and interoperating new and existing cyber tools.

OASIS Virtual Event

Using TOSCA, Unfurl, and GitOps to simplify application deployment

Part of the TOSCA Implementation Webinar Series

During this webinar series, leading developers and users of TOSCA agreed to share their experiences with you. They will show demonstrations of TOSCA-based systems and examples of TOSCA service templates. They’ll also explain the unique benefits of TOSCA for their application domains.

Unfurl, a new open-source tool for managing your application deployment process, will be demonstrated in this webinar. Unfurl lets you easily track configuration, secrets, software and code dependencies, and deployment history all in git. Use TOSCA to describe your cloud infrastructure in simple, application-centric terms and, much like how a build tool builds an application, Unfurl will install and execute the necessary tools to deploy your infrastructure. This presentation will present an overview and live demo of Unfurl as well as a sneak peak of our cloud-based platform for Unfurl, https://unfurl.cloud.

No results with the selected filters