Rapid7 threat data, dedicated personnel will facilitate research that explores real-world scenarios and challenges to ready tomorrow’s cyber operators
Rapid7, Inc., a leader in cloud risk and threat detection, announced that the company’s proprietary threat data is powering a new research initiative investigating a better way to train cyber operators for maximum readiness. In partnership with the University of South Florida (USF), this effort will be boosted by over $1.5M funding from the Office of Naval Research (ONR) and the National Science Foundation (NSF).
In addition to providing incident data and intelligence collected from Rapid7’s global honeypot network, Rapid7 is dedicating personnel to facilitate the research effort and will play an instrumental role in helping USF researchers understand how the data and intelligence traces the path of real-world scenarios as they are analyzed in a security operations center (SOC).
“The best way to learn in a SOC environment is to get first-hand experience with threat actors’ tactics, techniques, and procedures — or TTPs,” said Raj Samani, senior vice president and chief scientist, Rapid7. “We expect the funding from ONR and NSF to help us achieve significant results through this research initiative, including the ability to implement world-class training programs that fully prepare the next generation of cyber practitioners.”
CIO INFLUENCE News: Enterprise Satisfaction With Providers Up; Emphasis on Innovation and Execution Growing
Through an evidence-based cyber training initiative with a companion research framework, cyber analysts will engage with scenarios and challenges found in real-world security operations centers, and researchers will gauge how these scenarios improve decision-making capabilities in the face of agile adversaries.
“Replicating realistic attack scenarios an analyst may face in operations is a critical aspect of this research, as it allows us to uncover effective training methods that eventually will matter in the trench,” said Xinming Ou, USF professor of computer science and engineering and principal investigator of the research. “Our partnership with Rapid7 is instrumental in making this research vision possible.”
Ou is closely working with Prof. Daniel Lende from the USF anthropology department and a co-principal investigator of the project. Ou noted, “cyber operation is essentially a human activity and I am extremely fortunate to have professor Lende on the team so we can adopt rigorous human study research methodologies. It also highlights the multidisciplinary nature of the USF-Rapid7 partnership.”
The U.S. National Science Foundation is an independent federal agency that supports science and engineering in all 50 states and U.S. territories. Its mission is to promote the progress of science, advance the national health, prosperity and welfare, and secure the national defense.
CIO INFLUENCE News: InfluxData Announces InfluxDB Clustered to Deliver Time Series Analytics for On-Premises and Private Cloud Deployments
“The USF/Rapid7 project is unique in that it uses real-world cyber threat data as the basis to derive scenarios to drive cyber training research,” said Victor Piotrowski, Lead Program Director at National Science Foundation. “This type of experiential learning holds great promise to expedite the workforce development urgently needed to secure the nation’s cyber infrastructure.”
“SOC teams serve as an organization’s offense and defense, and their effective training is a universal challenge,” Samani added. “By partnering with USF and sharing our threat data and expertise, we intend to help this initiative’s stakeholders and the greater cyber community make significant strides in this area.”
The cyber training research initiative is being undertaken by the Rapid7 Cyber Threat Intelligence Lab at USF. Announced in February of this year, the lab is a joint endeavor between Rapid7 and USF to drive a deeper understanding of the cybersecurity threat landscape through shared expertise, data, and technological capabilities.
CIO INFLUENCE News: Cohesity and Carahsoft Partner to Provide Data Security and Management Solutions to the Public Sector
[To share your insights with us, please write to sghosh@martechseries.com]
