Agile Defense presented at BSidesDC 2014

by Rob Johnston, Heather Ward, Nathan Mcbride,

Summary : The ability to successfully mold with the evolving adversary will be critical in successfully defending an enterprise network. The open IOC community is a global framework of public, private, and government entities that embrace the open IOC concept as a method of detection and incident response. This community can baseline the entire Industrial Base presenting a unified defensive strategy enhancing the security of a nation. IOC Bucket enables everyone the search capability, where customers can search through its reputation database, for any one of the 500+ indicators in the IOC framework returning IOC matches for download. Learn how IOCs work, how to develop them, and how to use them with your current defense mechanisms.