Cyber Operations Rapid Assessment (CORA): A Guide to Best Practices for Threat-Informed Cyber Security Operations

Abstract

Actionable threat intelligence plays a critical role in cyber defense, from helping to protect systems and data, to protecting organizations, industries, and even countries. A number of recent highly-publicized breaches has led to considerable activity in both the public and private sector to enhance capabilities to collect, utilize, and share cyber threat information.1 2 Many organizations, however, struggle with introducing threat intelligence into their defenses, relying predominantly on static defensive measures and compliance-oriented processes. Transitioning to a threat-oriented posture is not easy, and change needs to occur across the triad of people, processes and technologies.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2015
Accession Number
AD1107887

Entities

People

  • Clem Skorupka
  • Lindsley Boiney

Organizations

  • MITRE Corporation

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Best Practices
  • Commerce
  • Computer Languages
  • Computer Network Security
  • Computer Networks
  • Cyber Defense Techniques
  • Cyber Threats
  • Cyberattacks
  • Cybersecurity
  • Cyberspace Operations
  • Department Of Homeland Security
  • Detection
  • Detectors
  • Information Exchange
  • Security
  • Standards
  • Training

Readers

  • Cybersecurity.
  • Defense Technology Research and Development.
  • Systems Analysis and Design

Technology Areas

  • Cyber