Note: this blog is a mirror of my HP Labs Blog, on the same topic, accessible at: http://h30507.www3.hp.com/t5/Research-on-Security-and/bg-p/163

Friday, December 2, 2011

Next Generation Situational Awareness and Information Sharing

I am particularly interested in innovating in the space of Situational Awareness and Information Sharing.

These areas are getting more and more relevant within organisations, beyond the traditional military and government contexts.

Situational Awareness is usually related to the process of collecting and processing large amount of information to understand risks, threats and issues and enable decision support.

I believe there are great innovation opportunities in this space, including:

· Leveraging longer-term risk assessment, what-if analysis and decision support capabilities, such as the ones provided by Security Analytics

· Leveraging Cloud computing and related services for the provisioning and management of situational awareness capabilities

· Innovation in the information flow management, involved in situational awareness scenarios, by using advance policy and context based techniques

· Leveraging assets such as HP ArcSight, HP TippingPoint and Autonomy in this space

· Designing SOC 2.0, the next generation of Security Operations Centers for Incident Management and Remediation to adapt to new emerging scenarios and technologies

· Intelligent detections of threats and risks and reactions (e.g. via dynamic playbooks)

More to come.


--- Posted by Marco Casassa Mont (here and here) ---
--- NOTE: use this mirror blog if you prefer posting on an external blog site ---
--- NOTE: my original HP blog can be found here ---

No comments: