Walk before you run: Baseline controls and paths to cybersecurity maturity By Gregory Moore Are you a seasoned IT pro who’s been tasked with handling security for your organization? Are you a brand-new CISO awash in a sea of security products and vendors? Or maybe you (finally!) received additional resources and management’s approval to “do… Read more »
Research
Protecting Earth Science Research
By Gregory Moore The Geodetic Facility for the Advancement of Geoscience (GAGE) is now using the services of the Research Security Operations Center (ResearchSOC) to help protect and detect threats to its instruments and data. UNAVCO, a non-profit university-governed consortium, facilitates geoscience research and education using geodesy—the study of Earth’s shape, gravity field, and rotation. Since 2013, UNAVCO has operated the national… Read more »
Keeping the mysteries of the universe safe from hackers
By Gregory Moore IU-led ResearchSOC now provides cybersecurity for NRAO’s deep-space discoveries The National Radio Astronomy Observatory (NRAO) has engaged the services of the Research Security Operations Center (ResearchSOC) to understand and detect threats to their instruments and data. A virtual center funded by the National Science Foundation (NSF) and led by Indiana University (IU),… Read more »
ASSERT: Using machine learning to aid in the fight against cyberattacks
By Gregory Moore ResearchSOC has a unique role in helping make scientific infrastructure resilient to and capable of supporting trustworthy, productive research. Since ResearchSOC relies on OmniSOC services that include cyber threat intelligence, proactive threat hunting, and monitoring and triaging security events, ResearchSOC would benefit greatly from enhanced threat detection. In 2019 Indiana University’s Center… Read more »
Testing risk scenarios at the ResearchSOC using DETERLab
By Gregory Moore Mike Stanfield is a senior security analyst in the Center for Applied Cybersecurity Research (CACR). In the context of this post, Mike is also project liaison for the ResearchSOC. Mike oversees the technical integration with ResearchSOC partners and clients. The DETER project (cyber DEfense Technology Experimental Research) helps address the critical strategic… Read more »
Webinar: NSF Resources for Research Cybersecurity: Trusted CI and ResearchSOC
Note: this announcement was originally posted on Trusted CI’s website. Trusted CI Director Von Welch and ResearchSOC Deputy Director Susan Sons will present “NSF Resources for Research Cybersecurity: Trusted CI and ResearchSOC,” on Friday June 14th at 2pm ET. This presentation is part of ESnet’s series of CI Brownbag talks. Cybersecurity for research has a… Read more »
Join ResearchSOC at PEARC19
Learn more about the challenges of providing cybersecurity for open science and research projects and how operational services from the ResearchSOC can help meet those challenges at PEARC19, July 28th – August 1st, in Chicago. Attend the panel Community Engagement at Scale: NSF Centers of Expertise on Tuesday, July 30th 1:30-3:00 pm. This panel brings… Read more »
“Securing and Supporting Research Projects: Facilitation Design Patterns” slides available
In case you missed the above workshop at EDUCAUSE SPC (and you may well have missed it—the workshop filled up early, had a long wait list, and was almost standing room only), the slides from “Securing and Supporting Research Projects: Facilitation Design Patterns” are now available. Presented by Michael Corn (CISO, UCSD) and Cyd Burrows-Schilling… Read more »
Cybersecurity for research: it’s a different animal altogether
A quick Internet search for cybersecurity solutions will yield many pages of results, with dozens of commercial firms happy to secure networks, email servers, and other enterprise cyberinfrastructure. So why then is it so difficult to find workable cybersecurity solutions for open science research projects, especially projects such as those conducted by universities and government… Read more »
Videos We Like: When Bad (cyber)Things Happen to Good Science
We recently viewed a series of cybersecurity training videos designed for research scientists. These videos were created as part of the SouthEast SciEntific Cybersecurity for University Research program. These four Cyber Security for Scientists videos provide an accessible overview of the cyberthreats that research projects face, as well as case studies. “Introduction to Cyber Security… Read more »