Cyber Security Market

EADS Launches Cybersecurity Business Unit

admin — Fri, 27 Apr 2012 05:50:34 +0000

EADS Cassidian announced a new dedicated business unit, Cassidian CyberSecurity, targeting the fast-growing cyber security market across Europe and Middle East, with an initial focus on Germany, the United Kingdom and France. Cassidian CyberSecurity business unit will co-ordinate all of the cyber security expertise existing within the EADS Group with a long term goal to establish itself as a key dedicated player in this market with substantial critical mass.

Cassidian CyberSecurity’s portfolio of products and services is built along three tiers:

Cyber Defence & Professional Services, aimed at providing high-level professional services (such as attack analysis and response, risk management, audits of security infrastructure architectures) and implementing operation centres dedicated to security supervision of Scada and IT systems. These security operation centres, enabling the provision of remote-operated cyber security services, will be based [initially] in the three launch countries of France, Germany and the United Kingdom.
Trusted Infrastructure, for implementing national and European high-security trusted solutions and developing technologies (e.g. cryptography, digital identity management) in accordance with regulatory and national sovereignty requirements.
Secure Mobility, to provide next generation security products and services for industry and governments in the form of mobile equipment (voice, data, applications) and deployable communication nodes.

The government segment of the cyber security sector is experiencing a dramatic rise in the number and level of sophistication of threats, covering attacks from nation states, through to terrorist groups. According to a recent market study the U.S Federal cyber security market is red hot. With a cumulative market valued at $65.5 billion (2013 – 2018), the U.S. Federal Cybersecurity market will grow steadily – at about 6.2% CAGR over the next six years.

Chinese Cyber Threat

admin — Mon, 19 Mar 2012 12:54:46 +0000

The U.S.-China Economic and Security Review Commission released a report “Occupying the Information High Ground: Chinese Capabilities for Computer Network Operations and Cyber Espionage.” The report details how China is advancing its capabilities in computer network attack, defense, and exploitation and examines issues related to cybersecurity, China, and potential risks to U.S. national security and economic interests.

The major report findings are rather gloomy:

Chinese capabilities in computer network operations have advanced sufficiently to pose genuine risk to U.S. military operations in the event of a conflict;
Chinese commercial firms, with foreign partners supplying critical technology and often sharing the cost of the R&D, are enabling the PLA to receive access to cutting edge research and technology;
The Chinese military’s close relationship with large Chinese telecommunications firms creates an avenue for state sponsored or state directed penetrations of supply chains for electronics supporting U.S. military, government, and civilian industry – with the potential to cause the catastrophic failure of systems and networks supporting critical infrastructure for national security or public safety.

ManTech Acquires Cyber Security Business of HBGary

admin — Tue, 28 Feb 2012 08:27:24 +0000

ManTech International Corporation has announced acquisition of the business of HBGary, Inc. HBGary provides a comprehensive suite of software products to detect, analyze, and diagnose Advanced Persistent Threats (APT) and targeted malware. The company has an impressive list of commercial customers in the financial services, energy, critical infrastructure and technology sectors. The business will be an integral part of ManTech’s broad cyber security offering.

IBM Introduces Cyber Security Intelligence Platform

admin — Thu, 23 Feb 2012 08:20:49 +0000

IBM has unveiled new cyber security intelligence platform designed to deliver deep analytics with real-time data feeds from hundreds of different sources. The QRadar Security Intelligence Platform, designed by Q1 Labs and acquired by IBM last fall, is a single platform integrating real-time security intelligence data to include more than 400 different sources. The platform features are:

Threat Intelligence – Intelligence from one of the world’s largest repository of threat and vulnerability insights is planned to be available based on the real-time monitoring of 13 billion security events per day from the IBM X-Force Threat Intelligence Feed. This insight can flag behavior that may be associated with Advanced Persistent Threats, which may emanate from teams of attackers accessing networks through stealth means.
Visibility into Enterprise Activity – The platform will unite events from IBM and non-IBM products that span four areas of organizational risk – infrastructure, people, applications and data.
Pinpoint Analysis in an Age of Big Data – The platform can drill down to basic data elements to help analyze issues emanating from network access information at the periphery to database activity at the core of a business.

Cybersecurity for Cyber-Physical Systems Workshop, April 23-24, 2012, Gaithersburg, Maryland

admin — Wed, 25 Jan 2012 07:09:40 +0000

On April 23 and 24, 2012, the NIST ITL Computer Security Division will host a two-day workshop Cybersecurity for Cyber-Physical Systems about the cyber security needed for cyber-physical systems (CPSs), with a focus on results of research and real-world deployment experiences. The first day will have speakers that address CPSs across multiple sectors of industry (e.g., automotive, aviation, healthcare). The second day will focus on cyber security needs of CPSs in the electric Smart Grid. Abstracts and slide sets from presenters will be published in a NIST Interagency Report as proceedings of the conference.

Goals of the conference:

To look at recent (2 – 3 years) research results and deployment experiences that have occurred in cyber-physical areas across multiple industries. (e.g., healthcare, manufacturing, automotive, electric Smart Grid)
To determine if there are security requirements that are unique to CPSs as opposed to strictly cyber or physical systems.

GFIRST 2012, 8th Annual National Conference, August 19-24, 2012, Atlanta, Georgia

admin — Sat, 14 Jan 2012 07:09:06 +0000

GFIRST 2012, 8th Annual National Conference, will be held August 19-24, 2012, at the Atlanta Marriott Marquis in Atlanta, Georgia. GFIRST (Government Forum of Incident Response and Security Teams) is a group of technical and tactical practitioners from incident response and security response teams responsible for securing government information technology systems and providing private sector support. GFIRST members work together to understand and handle computer security incidents and to encourage proactive and preventative security practices across government agencies. GFIRST promotes cooperation among the full range of Federal, State and local agencies, including defense, civilian, intelligence, and law enforcement.

GFIRST is a great place for public and private sector leaders serving in non-technical roles to become familiar with the fundamentals of cyber security and incident response. GFIRST is also an excellent resource for practitioners in incident response and information security from the public and private sectors to include:

Academia with Cyber Security Specialties
Chief Information Security Officers
Chief Technology Officers
Computer Forensic Personnel
Critical Information Infrastructure Owners & Operators
Cyber Incident Responders
Cyber Security Association Members
Cyber Security Experts
Emergency Managers
GFIRST Members
Incident Response Directors
Information System Security Managers
Information System Security Officer
Information Technology Administrators
Information Technology Directors
Inspector Generals
ISAC Members
Law Enforcement Personnel Supporting Cyber Security Issues
Network Administrators
Process Improvement Managers
Security Engineers
Software Developers & Managers

Quantum Computing Arms Race is On

admin — Wed, 11 Jan 2012 16:26:57 +0000

Governments are racing to add a new weapon to cyber warfare arsenal - quantum computing, says a new market study Quantum Computing Market Forecast 2015-2020.

ICCS 2012, A White Hat Summit, January 9 - 12, 2012 New York City

admin — Tue, 10 Jan 2012 17:33:09 +0000

This week the Federal Bureau of Investigation and Fordham University teamed up to host the third annual International Conference on Cyber Security (ICCS 2012) in New York City, the information center of the world. ICCS 2012 is an unparalleled opportunity that brought together global leaders in emerging cyber threat analysis, operations and enforcement.

Federal Information Systems Security Educators’ Association (FISSEA) “A New Era in Cybersecurity Awareness, Training, and Education”

admin — Mon, 09 Jan 2012 07:31:13 +0000

The the 25th FISSEA Annual Conference A New Era in Cybersecurity Awareness, Training, and Education will be held from March 27 to March 29, 2012, at the NIST Main Campus, Green Auditorium & Lecture Room B, 100 Bureau Drive Gaithersburg, Maryland.

FISSEA – now a NIST program under the National Initiative for Cybersecurity Education (NICE) announced the 25th Annual Conference. This year’s theme, “A New Era in Cybersecurity Awareness, Training, and Education” will focus on security training on a budget, current cybersecurity projects, emerging trends and initiatives. Attendees will gain new techniques for developing and conducting training, professional development, networking, and an opportunity to meet industry partners at the Vendor Exhibit.

New Initiative to Protect Electric Grid from Cyber Threats

admin — Sun, 08 Jan 2012 18:02:42 +0000

The Department of Energy announced an initiative to protect the electrical grid from cyber attacks. The “Electric Sector Cybersecurity Risk Management Maturity” project, a White House initiative led by the Department of Energy in partnership with the Department of Homeland Security (DHS), will leverage the insight of private industry and public sector experts to build on existing cybersecurity measures and strategies to create a more comprehensive and consistent approach to protecting the nation’s energy delivery system.

This initiative will develop a “maturity model” that allows utility companies and grid operators to measure their current capabilities and analyze gaps in their cyber defenses. Maturity models, which rely on best practices to identify an organization’s strengths and weaknesses, are widely used by other sectors to improve performance, efficiency and quality.