The Research Security Operations Center (ResearchSOC) was funded by the NSF in 2018 to provide cybersecurity as a service focused on NSF large facilities research projects. Its mission began as a collaborative security response center whose expertise and resources are leveraged by the entire research and education community to improve the cybersecurity posture of scientific… Read more »
Research
Defending against malicious code embedded in legitimate websites
Richard Biever is Duke University’s chief information security officer. Gagan Kaur is a data scientist at Duke University. The problem Security teams have the unenviable task of protecting large, complex, and diverse environments. Areas of focus typically center on protecting an internal network and today, cloud environments. Security infrastructure such as intrusion prevention/detection, firewalls, log… Read more »
Workshop: Cybersecurity Engagement in a Research Environment
You are invited to a free workshop sponsored by ResearchSOC and NSF Cybersecurity Engagement in a Research Environment A free workshop for researcher-facing cybersecurity professionals sponsored by the ResearchSOC and National Science Foundation December 7-9, 2021 (US Pacific Time). Virtually via Zoom and Slack. Please join us for this seat-limited workshop. The intent of the… Read more »
ResearchSOC can help you comply with CIS Top 20 and NIST standards
Many research facilities are using the Center for Internet Security (CIS): Top 20 Critical Security Controls (CIS Top 20) as a basis for their cybersecurity programs. ResearchSOC can provide services that address several key elements of these control sets. ResearchSOC enables our clients to jump start their security program by providing or supporting adoption of… Read more »
Research at risk: ransomware attack on Physics and Astronomy case study
Michigan State University and ResearchSOC partner Trusted CI collaborate to raise awareness of cybersecurity threats to the research community Ransomware is a form of cybercrime that has risen to the same level of concern as terrorism by the U.S. Department of Justice. The United States suffered more than 65,000 ransomware attacks last year and victims paid $350 million in ransom,… Read more »
Webinar preview: “Walk before you run” with Josh Drake
Walk before you run: Baseline controls and paths to cybersecurity maturity By Gregory Moore Are you a seasoned IT pro who’s been tasked with handling security for your organization? Are you a brand-new CISO awash in a sea of security products and vendors? Or maybe you (finally!) received additional resources and management’s approval to “do… Read more »
Protecting Earth Science Research
By Gregory Moore The Geodetic Facility for the Advancement of Geoscience (GAGE) is now using the services of the Research Security Operations Center (ResearchSOC) to help protect and detect threats to its instruments and data. UNAVCO, a non-profit university-governed consortium, facilitates geoscience research and education using geodesy—the study of Earth’s shape, gravity field, and rotation. Since 2013, UNAVCO has operated the national… Read more »
Keeping the mysteries of the universe safe from hackers
By Gregory Moore IU-led ResearchSOC now provides cybersecurity for NRAO’s deep-space discoveries The National Radio Astronomy Observatory (NRAO) has engaged the services of the Research Security Operations Center (ResearchSOC) to understand and detect threats to their instruments and data. A virtual center funded by the National Science Foundation (NSF) and led by Indiana University (IU),… Read more »
ASSERT: Using machine learning to aid in the fight against cyberattacks
By Gregory Moore ResearchSOC has a unique role in helping make scientific infrastructure resilient to and capable of supporting trustworthy, productive research. Since ResearchSOC relies on OmniSOC services that include cyber threat intelligence, proactive threat hunting, and monitoring and triaging security events, ResearchSOC would benefit greatly from enhanced threat detection. In 2019 Indiana University’s Center… Read more »
Testing risk scenarios at the ResearchSOC using DETERLab
By Gregory Moore Mike Stanfield is a senior security analyst in the Center for Applied Cybersecurity Research (CACR). In the context of this post, Mike is also project liaison for the ResearchSOC. Mike oversees the technical integration with ResearchSOC partners and clients. The DETER project (cyber DEfense Technology Experimental Research) helps address the critical strategic… Read more »