Determining system requirements for human-machine integration in cyber security incident response
MM Nyre-Yu - 2019 - search.proquest.com
In 2019, cyber security is considered one of the most significant threats to the global
economy and national security. Top US agencies have acknowledged this fact, and …
economy and national security. Top US agencies have acknowledged this fact, and …
Informing hybrid system design in cyber security incident response
M Nyre-Yu, KA Sprehn, BS Caldwell - … Conference, HCI-CPT 2019, Held as …, 2019 - Springer
Computer security incident response is a complex socio-technical environment that provides
first line of defense against network intrusions, but struggles to obtain and keep qualified …
first line of defense against network intrusions, but struggles to obtain and keep qualified …
Identifying expertise gaps in cyber incident response: Cyber defender needs vs. Technological Development
M Nyre-Yu - 2021 - scholarspace.manoa.hawaii.edu
Incident response is an area within cyber defense that is responsible for detecting,
mitigating, and preventing threats within a given network. Like other areas of cyber security …
mitigating, and preventing threats within a given network. Like other areas of cyber security …
Boosted CSIRT with AI powered open source framework
RG Maezo, AE Rey - 2023 JNIC Cybersecurity Conference …, 2023 - ieeexplore.ieee.org
This study presents a novel framework leveraging the potential of Artificial Intelligence (AI) in
enhancing the efficacy of Computer Security Incident Response Teams (CSIRTs). It …
enhancing the efficacy of Computer Security Incident Response Teams (CSIRTs). It …
Development and validation of the air force cyber intruder alert testbed (ciat)
Presently, cyber defense heavily relies on human network analysts who must detect and
investigate potential suspicious activity, a demanding, fatiguing process that takes a heavy …
investigate potential suspicious activity, a demanding, fatiguing process that takes a heavy …
Humans and Automation: Augmenting Security Operation Centers
J Tilbury, S Flowerday - Journal of Cybersecurity and Privacy, 2024 - mdpi.com
The continuous integration of automated tools into security operation centers (SOCs)
increases the volume of alerts for security analysts. This amplifies the risk of automation bias …
increases the volume of alerts for security analysts. This amplifies the risk of automation bias …
On computer security incident response teams
B Horne - IEEE Security & Privacy, 2014 - ieeexplore.ieee.org
This special issue will give you a greater understanding of what CSIRTs are and how they
work. For the security researcher, these articles highlight challenges faced by operational …
work. For the security researcher, these articles highlight challenges faced by operational …
Review of human decision-making during computer security incident analysis
We review practical advice on decision-making during computer security incident response.
Scope includes standards from the IETF, ISO, FIRST, and the US intelligence community. To …
Scope includes standards from the IETF, ISO, FIRST, and the US intelligence community. To …
Observing cyber security incident response: qualitative themes from field research
M Nyre-Yu, RS Gutzwiller… - Proceedings of the …, 2019 - journals.sagepub.com
Cyber security increasingly focuses on the challenges faced by network defenders. Cultural
and security-driven sentiments about external observation, as well as publication concerns …
and security-driven sentiments about external observation, as well as publication concerns …
A comparative study on cyber threat intelligence: The security incident response perspective
Cyber Threat Intelligence (CTI) is threat information intended for security purposes.
However, use for incident response demands standardization. This study examines the …
However, use for incident response demands standardization. This study examines the …