--[ The Future of Defensive Cyber Operations
--[ presenters ]--[ John Black, Henry Coller, Chris Wild, David Vaughn
--[ scheduled ]--[
$ getent passwd . ├─ names: │ ├─── John Black │ ├─ Henry Coller │ ├─── Chris Wild │ └─ David Vaughn └── org: Army Reserve Cyber Protection Brigade (ARCPB)
CW2 John Black is a Cyber Warfare Technician, currently assigned to the 75th Innovation Command in its Cyber and Electromagnetic Activities (CEMA) team. He has a varied background in multiple military specialties and an industry career in cybersecurity technology, red team, cyber threat intelligence, and data analtics.
Operating in the cyber environment of the future will require significant evolution of current practice. The computer network environment that was once more static, homogenous, and manageable as separate enclaves, continues to be transformed by widespread virtualization, migration to cloud services, the rise of mobility, and the explosion of numbers and variety of connected cyber-physical systems from the enterprise to the battlefield. Threats are becoming more sophisticated, automated, and adaptive to defeat defenses. Defending cyberspace will depend, in part, on successful cyber operations. Drawing on their military background and civilian industry experience, a panel of Cyber Warfare Technicians from Army Reserve Cyber Protection Brigade will lead a discussion of the rapidly changing environment and threats and how defensive cyber operations (DCO) will need to evolve to keep up with these changes.
Panelists will present three subtopics to open discussion and questions from panelists and from audience participation.
The future of DCO is AI (through automation and machine learning).
The future of DCO is IoT (including the tactical internet of battlefield things or IoBT).
The future of DCO is OCO (hunting forward and adopting an attacker's mindset to "shift left" of the attack).
The Future of Defensive Cyber Operations (FDCO) is a research project that originated from within Army Reserve Cyber Protection Brigade (ARCPB) as a catalyst for cyber workforce development and the continuing evolution of tactics, techniques, and procedures in DCO.