Establishing a Threat Defense Life Cycle

CASE STUDY
Cyber threats and the sophistication of cyber-attacks continue to increase.

Yet, today’s cyber defenses may not be adequate to stop tomorrow’s cyber-attack. By now, most enterprises have invested in cyber defenses, deploying a myriad of cybersecurity tools to protect their information assets…but have they really reduced the risk of breach? The problem is that most cybersecurity solutions serve a single purpose, and often don’t communicate well with other cyber defense solutions.

At ClearFocus we take a holist view of cyber defenses, and we will work with your enterprise to develop cybersecurity solutions that work together in what we call the “Threat Defense Life Cycle”.  The Threat Defense Life Cycle has 4 steps:

  1. Rationalize Cybersecurity Tools
  2. Enrich Data
  3. Apply Advanced Analytics, and
  4. Orchestrate and Automate Defenses


RATIONALIZING CYBERSECURITY TOOLS

We start by reviewing existing cybersecurity solutions and security sensors to determine if there are any gaps to maximize coverage across the enterprise.  Our goal is to simplify the environment and reduce redundancies between security tools. We also look to improve the effectiveness of existing cyber defense solutions, which includes reducing maintenance and operations costs. We strive to ensure maximum coverage of all events, logs and network traffic, since cyber defenses are only as good as the information collected.

ENRICH DATA

Once we have confirmed that we are collecting the right information, we Enrich this raw data to optimize the meaning, and quality, of the information. During the enrichment process we may transform the information by enriching it with cyber intelligence from various open source and private data sources, known Indicators Of Compromise (IOCs), and meta data to give the information more meaning. The goal is to provide context to the security sensor data collected.

APPLY ADVANCED ANALYTICS

Once we have enriched the data, we store the information in a Knowledge Repository where we can apply Machine Learning (ML), Predictive Analytics and Artificial Intelligence (AI) to determine potential cyber threats…and how, and when, to take action. Our goal is to provide advanced analytics that uncovers anomalous activity that could indicate a potential cyber-threat.

ORCHESTRATE AND AUTOMATE DEFENSES

Leveraging the Analytics from the prior stage we then orchestrate and automate cyber defenses. This includes automating redundant or repeatable tasks to drive efficiencies by establishing repeatable workflows. In some cases, we reconfigure cyber defenses in real time based on the information we have collected, enriched and analyzed. The goal is to use the information discovered during the prior Threat Defense Life Cycle stages to improve cyber defenses, discover new indicators of compromise, and to orchestrate and automate responses.

The Threat Defense Life Cycle is a comprehensive and holistic approach to increasing your enterprise’s security posture to reduce cyber threats. If you would like to know more about ClearFocus Technologies’ Threat Defense Life Cycle approach, please contact us at cybersecurity@clearfocustech.com.

Case Studies.

We are innovators. Our consultants have the right mix of talent, creativity, process and technology to ensure every initiative we undertake has successful outcomes and meets mission objectives.

Cybersecurity Modernization

One of ClearFocus federal clients wanted to modernize their existing cybersecurity program since the organization was not able to address several federally mandated security requirements. Additionally, new standards like the Risk Management Framework (RMF) require new processes, technology and approaches to meet the NIST SP 800-37 requirements.

SOC Operations

A ClearFocus client had recently formed a Security Operations Center (SOC) but was struggling with the roles, responsibilities and procedures to run an effective SOC.

Establishing a Threat Defense Life Cycle

Cyber threats and the sophistication of cyber-attacks continue to increase. Yet, today’s cyber defenses may not be adequate to stop tomorrow’s cyber-attack. By now, most enterprises have invested in cyber defenses, deploying a myriad of cybersecurity tools to protect their information assets…but have they really reduced the risk of breach?

Cybersecurity Modernization

One of ClearFocus federal clients wanted to modernize their existing cybersecurity program since the organization was not able to address several federally mandated security requirements. Additionally, new standards like the Risk Management Framework (RMF) require new processes, technology and approaches to meet the NIST SP 800-37 requirements.

SOC Operations

A ClearFocus client had recently formed a Security Operations Center (SOC) but was struggling with the roles, responsibilities and procedures to run an effective SOC.

Establishing a Threat Defense Life Cycle

Cyber threats and the sophistication of cyber-attacks continue to increase. Yet, today’s cyber defenses may not be adequate to stop tomorrow’s cyber-attack. By now, most enterprises have invested in cyber defenses, deploying a myriad of cybersecurity tools to protect their information assets…but have they really reduced the risk of breach?

Kevin Cassidy

President and CEO

Kevin Cassidy is responsible for defining and implementing ClearFocus’ vision and strategy. Kevin is also accountable for the company’s profitability and growth. Prior to starting ClearFocus, Kevin was the VP of Operations for InScope International where he was responsible for the delivery of enterprise IT and software development services. He also managed the company’s internal operations. Kevin started his career at AT&T and later moved on to OnePoint Communications and Verizon where he served in various IT leadership roles. Kevin is a Project Management Professional (PMP) with a Bachelors Degree in Computer Science from Rutgers University and an MBA from Georgia State University. Kevin’s interests include performance cars, running, video production and he actively serves on his church’s video ministry team.

close-link

Jennifer Garst

Vice President Client Services and Solutions

Jennifer Garst is responsible for the quality delivery of all ClearFocus client programs and responsible for client relations. Additionally, Jennifer leads the company’s government capture and proposal development. Jennifer joins ClearFocus after 12 years as the VP of InScope International’s Federal Division where she significantly grew InScope’s federal programs. Prior to InScope, Jennifer severed in various technical leadership roles which includes Technical Director of IT Management and Control for AOL and Director of Professional Services for Price Waterhouse Coopers. Jennifer has a Bachelors of Arts in Sociology and Criminal Justice from Roanoke College and an MPA in Management Information Systems from American University. When not supporting ClearFocus Jennifer’s loves to travel with her family.

close-link

Glen Dosey

Director Cybersecurity Technology

Glen Dosey shapes the direction of ClearFocus’ cybersecurity services. He also keeps ClearFocus on the forefront of cybersecurity technology. Glen holds certifications in the fields of computer forensics, incident response, malware analysis, and penetration testing. He contributed to the cybersecurity portions of the NIST CyberSkills framework. Glen believes in the importance of professionalizing and growing the cybersecurity workforce. Before joining ClearFocus Technologies, Glen worked for the Department of Homeland Security (DHS) where he was responsible for building and managing a CyberSecurity Operations Center at the Federal Law Enforcement Training Center.

close-link

Dave Blessing

Vice President Business Development

Dave Blessing is responsible for business development and the shaping of ClearFocus’s GoTo Market strategy. Dave brings 30 years of IT industry experience spanning Technology Sales and Consulting Service Delivery. Dave’s has had the pleasure of working for many technology providers from startups to mainstream (IBM, EMC, Sybase, Symantec…), serving within a global Distributor and selling for multiple Value-Add Resellers. Dave career has had him support Commercial and Federal markets, allowing Dave to develop an awareness of some of the differences and commonalities between these markets. Dave brings a depth of experience on how to best serve ClearFocus’s clients, while being a trusted and valued business partner within the IT ecosystem, as in the end successful business tends to be a team effort. Dave holds a Bachelors of Science in both Computer Science and Mathematics from Towson State and a Masters of Science in Network Communications from Johns Hopkins. Dave’s pastime is fast cars with a strong affinity towards Dodge Vipers.

close-link

Andy Herscher

Director Cybersecurity Programs

Andy Herscher provides technical development and enablement (Methodology, Process, People and Delivery) for ClearFocus Cybersecurity programs. Andy has multiple cybersecurity certifications which include the Certified Information Systems Security Professional (CISSP), the Certified in Risk and Information Systems Control (CRISC) and the Metasploit Certified Specialist (MCS). Before joining ClearFocus, Andy was the Director of Cybersecurity for InScope International. Before InScope, Andy held several Security Engineer positions that supported government programs. Andy has a Bachelors degree in Information Technology and Information System Security from the University of Phoenix and an MBA from Colorado State University.

close-link

Chris Ruotolo

Director Enterprise IT

Chris Ruotolo is accountable for shaping the direction of ClearFocus’ Enterprise IT services, technology, and implementation processes. Chris also leads ClearFocus’ Professional Services Practice where he has developed repeatable service offerings for OEMs, VARs and direct client engagements. Prior to joining ClearFocus Chris supported various OEMs and VARs which include Nutanix, Cloudistics, Pure Storage and he has considerable experience supporting VMWare engagements. Chris has multiple technical certifications for Nutanix, VMWare, Pure Storage and several other products. Chris is a voracious reader who enjoys riding motorcycles, electronic projects and playing with his kids.

close-link

Tracey Little

Manager Corporate Operations

Tracey is accountable for managing ClearFocus’ back office operations which includes contracts, client invoicing, procurement and federal and commercial program support.  Prior to joining ClearFocus Technologies Tracey was accountable for corporate operations for DH Technologies. Tracey has a Business Administration degree from Sanford Brown College. In her free time, Tracey coaches girls basketball and is a diehard Dallas Cowboy fan.

close-link

Roxanne Voorhees

Manager HR/Recruiting/FSO

Roxanne is responsible for managing ClearFocus’ Recruiting, Human Resources, and FSO departments in which she oversees all recruiting efforts, employee relations and facility security management.  Prior to joining ClearFocus Technologies Roxanne worked in HR and Recruiting for the last 15+ years and supported government and commercial customers.  Her passion is truly recruiting top talent and making lasting relationships with them for future or present positions. In her free time, Roxanne likes to travel and hang out with her dog, Jazzy.

close-link