STIX, TAXII, CISA: Impact of the Cybersecurity Information Sharing Act of 2015
Amid privacy concerns and after a decade-long battle, the U.S. Cybersecurity Information Sharing Act (CISA) of 2015 was passed. Critics claim CISA is a surveillance bill in disguise; proponents claim the act provides a needed legal framework for information sharing. Can CISA actually improve cyberdefense without risking privacy? Are there unforeseen roadblocks? What about STIX/TAXII?
Speakers
Bret Jordan ( @jordan_bret ); Mark Davidson
Director of Security Architecture and Standards, Blue Coat Systems
Bret is a seasoned business leader and cyber security architect with over 20 years of experience in cyber security. He has worked with an eclectic mix of global enterprise companies, startups, non-profits, academic institutions, and currently works at Blue Coat Systems where he heads security architecture and standards in the Office of the CTO. Bret is also a co-chair of the OASIS-CTI-TAXII sub-committee.
Mark Davidson is a cybersecurity leader and information sharing subject matter expert. Davidson heads up software development at Soltra and is a Co-Chair in the STIX/TAXII standards group. Davidson has experience in security operations, cyber R&D and product development. Before leading the development of Soltra Edge, he was a core member of the STIX/TAXII team at MITRE where he was the lead author for TAXII 1.0 and TAXII 1.1 and contributed measurably to the development of STIX and CybOX. Before that, Davidson was an analyst in a Fortune 100 SOC where he developed solutions for information collection and fusion across multiple subsidiaries, geographic regions and political environments.
Detailed Presentation:
Comments