OCA Breakfast at RSA 2022
June 16, 2022
Try Kestrel in a Cloud Sandbox
July 27, 2022
Last week I had the pleasure to be back at RSA after a 2-year hiatus. The energy of the security community was infectious – you could feel it not only on the show floor and in each of the sessions, but also on the road, the restaurants, and more! It was great to see the security community – vendors, practitioners, and end users – getting together in-person to collaborate, brainstorm, and discuss their ideas. All of this to stay ahead of the adversaries!
Open Cybersecurity Alliance: Driving Industry Collaboration
While it was heartening to see the energy at the conference itself, I was also very excited about how we are looking to drive industry collaboration through Open Cybersecurity Alliance. Having led the marketing of OCA since its inception in October 2019, it was very fulfilling to see so many members of the OCA community collaborating, learning from one another, and planning how to fight adversaries. This aligns with OCA’s mission of making standards based, interoperable cybersecurity a reality. OCA’s goal is an open ecosystem where cybersecurity products interoperate without the need for customized integrations –reducing the interoperability challenge that many organizations face today.
Breakfast hosted by OCA
The energy of the conference also made its way over to the Union Square Meeting Room at the Hilton San Francisco, where OCA hosted a breakfast for the security community. You could feel the enthusiasm as security vendors and customers were eager to learn what was going on in OCA and how they can help drive industry collaboration. While some were already OCA members, some participants were non-members, exploring how they can help.
Mark Mastrangeli kicked us off by talking about OCA’s mission, the progress we’ve made, and his personal journey.
We discussed the 6 active workgroups that OCA has underway :
- STIX Shifter: With a goal of having one query language and response data model for all data sources
- PACE (Posture Attribute Collection & Evaluation): To bring posture collection standards up to date with the cloud era
- Kestrel Threat Hunting Language: Builds on STIX Shifter to create a unified threat hunting language and tool that works across all supported data sources
- Indicators of Behavior Sharing (Workgroup): Focused on the challenge of moving detections to Indicators of Behavior
- OCA Ontology (Workgroup): Creating a unified ontology for cybersecurity information to have standard ways of encoding information on data fabrics, APIs, etc.
- Zero Trust Architecture (Workgroup): Working to create and further refine OCA technologies to enable a Zero Trust architecture
Get Involved
Whether or not you attended the breakfast hosted by OCA, there are ways that you can collaborate with OCA. We are committed to providing an open and welcoming environment for all contributors. Anyone can join our Slack discussions, subscribe to our mailing lists, and make technical contributions to any of our projects at any time! Learn more here: https://opencybersecurityalliance.org/get-involved/
