Carson Zimmerman, a MITRE principal cybersecurity engineer, has written a book intended to help government, academic and commercial organizations adopt strategies to defend their cyber-dependent information technology systems.
He discussed the motivations behind his book “Ten Strategies of a World-Class Cybersecurity Operations Center” in a question-and-answer session that was produced as part of the company’s Project Stories.
Zimmerman says he supported MITRE clients’ cybersecurity operations centers for more than a decade and that “sharing the knowledge we’ve accumulated seemed like a great way to help sponsors and the cybersecurity community at large.”
He believes SOC operators must constantly update processes and tactics in order for them to adapt to the changing nature of computer security threats.
According to Zimmerman, MITRE recommends that organizations practice threat-based defense, which he describes as a strategy for investing in data collection, analysis and sensing tools designed to prevent unauthorized network access.
He noted the book compiles a set of cybersecurity best practices around process, technology and personnel.
“We've tried to give people hands-on examples and generalities so they can find elements of their particular situation in these scenarios and identify the best suggestions from what we're proposing to address their needs,” he stated.