Gain exclusive insights into the operations of NSA's Cybersecurity Threat Operations Center (NCTOC) in this 45-minute conference talk by Dave Hogue, Technical Director at the National Security Agency. Explore the mission, threat landscape, and best principles for CISOs and network defenders. Learn about NSA's cyber security operations, key trends, and effective partnerships. Discover the top 5 principles for building a strong cyber-defense posture, including establishing a defendable perimeter, hardening practices, and the importance of user vigilance. Delve into topics such as false flagging, the Internet of Things (IoT), machine learning in cybersecurity, and the challenges faced by the NSA. Gain actionable insights to implement in daily operations and understand what's working and what's not in emerging cybersecurity areas.
Insights from NSA’s Cybersecurity Threat Operations Center
Overview
Syllabus
Introduction
NSAs missions
Cyber security operations
Operations center functions
Primary mission
Disruptive events
Russia
Key trends
Effective partnerships
Top 5 Principles
Establish a Defendable Perimeter
harden to best practices
challenge your teams
Pyramid of pain
Business decision
Working with vendors
User vigilance
Technical controls and user vigilance
False flagging
False flagging isnt a new phenomenon
NSAs deductive approach
NSAs structure
US Cyber Command
Sharing information
IOT devices
NIST
Machine Learning
UK Model
Challenges
Taught by
RSA Conference
