ETFOptimize | High-performance ETF-based Investment Strategies

Quantitative strategies, Wall Street-caliber research, and insightful market analysis since 1998.
ETFOptimize | HOME
Close Window
My Watchlist
Indicators
Markets
Stocks
ETFs
Tools
Markets:
Overview
News
Currencies
International
Treasuries

MITRE Debuts Cyber Risk Analysis & Adversarial Emulation Tools to Secure Critical Infrastructure

By: via Business Wire

Infrastructure Susceptibility Analysis & MITRE Caldera for Operational Technology test effective cybersecurity recommendations to stop real-world adversaries & validate current efforts

How do we ensure the reliability of key community services such as clean water and consistent power? Cyber vulnerabilities and weaknesses are everywhere within critical infrastructure, but which vulnerabilities must be mitigated first? At RSA 2023, MITRE is showcasing its Infrastructure Susceptibility Analysis (ISA) to identify and prioritize mitigations by looking at how adversaries compromise infrastructure and what is needed to stop them. MITRE also is launching its MITRE CalderaTM for OT tool, which allows security teams to run automated adversary emulation exercises that are specifically targeted against operational technology (OT).

“Cybersecurity within critical infrastructure is paramount for national security, the economy, and the safety of the public,” said Mark Bristow, director, Cyber Infrastructure Protection Innovation Center, MITRE. “OT and industrial control systems (ICS) need innovative security solutions in order to be more resilient against increasing cyber threats. Often, a compliance-based approach has been taken to ICS cybersecurity which ultimately focuses on ‘easy to measure’ security controls like patch levels and password complexity. Instead, MITRE is offering better ways to measure risk and emulate threats that allow us to prioritize which potential scenarios would have the most impact on essential community services.”

How can ICS/OT organizations prioritize their cybersecurity efforts?

Many organizations struggle to assess risk and prioritize their cybersecurity efforts for their OT systems. Leveraging a traditional IT playbook without an OT-specific solution does not provide enough coverage. MITRE’s ISA methodology indicates which risks to prioritize based on the OT system’s susceptibility to adversaries and its current architecture. ISA expands on current threat intelligence approaches, using risk-based context, to enable organizations to reduce the risk to their operational environments.

MITRE constructed its ISA methodology by building on several existing MITRE capabilities and research areas, including MITRE ATT&CK® for ICS, CAPEC™, and Threat-Informed Failure Scenario Development to build a new model that allows asset owners to assess the most likely adversary kill chains. The result is a multi-step and evolved process, which assists organizations with understanding the potential effects of cyber-attacks at a highly technical level. At the same time, these technology-specific insights are combined with distilled threat information to generate actionable intelligence for OT systems.

How can ICS/OT organizations know their cyber defenses are robust?

“During the last few years, OT owners and operators have made significant investments to increase their security postures. While these investments are a great step forward, many of these capabilities have not been thoroughly validated to ensure they are working as designed,” added Bristow. “Instead, MITRE Caldera for OT enables security teams to evaluate their cyber defenses against known OT adversaries.”

OT security teams can leverage MITRE Caldera for OT as an automated, preventive tool to examine their OT cyber environment and determine if there are any existing vulnerabilities that adversaries could exploit or gaps in their security architecture. MITRE Caldera for OT, as part of the MITRE Caldera framework, provides OT-focused plug-ins to enhance red or blue team training, product testing and evaluation, or even measurement against acceptance testing milestones. Built on the MITRE ATT&CK for ICS framework, MITRE Caldera for OT emulates the attack path and attacker capabilities that are defined either through ATT&CK for ICS or other custom-built plug-ins.

During RSA 2023 in San Francisco, attendees can learn more about ISA during a conference presentation on April 24 at 1:10 p.m., and more about MITRE Caldera for OT during a Meet the Expert presentation on April 25 at 1:30 p.m. in MITRE’s booth (#4438) in the Moscone South Hall. The week after RSA, attendees at SANS’ ICS Security Summit in Orlando can see MITRE Caldera for OT demonstrated in person. MITRE’s capabilities in securing critical infrastructure also will be showcased at the ICS Village Hack the Capitol event, May 10-11, hosted at MITRE’s headquarters in McLean, Va. For companies who would like more information about MITRE’s full range of OT expertise and capabilities, contact OT@mitre.org.

About MITRE

MITRE’s mission-driven teams are dedicated to solving problems for a safer world. Through our public-private partnerships and federally funded R&D centers, we work across government and in partnership with industry to tackle challenges to the safety, stability, and well-being of our nation. Learn more at mitre.org.

Contacts

More News

View More
Cintas Stock Sends a Clear Buy Signal as Momentum Builds
Via MarketBeat
Topics Government
Tickers CTAS
It's a Good Time to Build a Position in KB Home
Via MarketBeat
Tickers KBH
Micron’s Stock Price Rally Is Not Over: MU $190 Is Coming Soon
Via MarketBeat
Topics Artificial Intelligence
Tickers AMD AMZN MSFT MU NVDA ORCL
Why Traders Are Doubling Down on SoundHound Stock After Big Rally
Via MarketBeat
Topics Artificial Intelligence
Tickers SOUN
Lithium Americas Rally Lifts Other Rare Earth Stocks
Via MarketBeat
Topics Government
Tickers ALB INTC LAC UEC
Stock Quote API & Stock News API supplied by www.cloudquote.io
Quotes delayed at least 20 minutes.
By accessing this page, you agree to the following
Privacy Policy and Terms Of Service.


 
IntelligentValue Home
Close Window

DISCLAIMER

All content herein is issued solely for informational purposes and is not to be construed as an offer to sell or the solicitation of an offer to buy, nor should it be interpreted as a recommendation to buy, hold or sell (short or otherwise) any security.  All opinions, analyses, and information included herein are based on sources believed to be reliable, but no representation or warranty of any kind, expressed or implied, is made including but not limited to any representation or warranty concerning accuracy, completeness, correctness, timeliness or appropriateness. We undertake no obligation to update such opinions, analysis or information. You should independently verify all information contained on this website. Some information is based on analysis of past performance or hypothetical performance results, which have inherent limitations. We make no representation that any particular equity or strategy will or is likely to achieve profits or losses similar to those shown. Shareholders, employees, writers, contractors, and affiliates associated with ETFOptimize.com may have ownership positions in the securities that are mentioned. If you are not sure if ETFs, algorithmic investing, or a particular investment is right for you, you are urged to consult with a Registered Investment Advisor (RIA). Neither this website nor anyone associated with producing its content are Registered Investment Advisors, and no attempt is made herein to substitute for personalized, professional investment advice. Neither ETFOptimize.com, Global Alpha Investments, Inc., nor its employees, service providers, associates, or affiliates are responsible for any investment losses you may incur as a result of using the information provided herein. Remember that past investment returns may not be indicative of future returns.

Copyright © 1998-2017 ETFOptimize.com, a publication of Optimized Investments, Inc. All rights reserved.