On November 6, 2012 Tony Rutkowski, Distiguished Senior Research Fellow in the Sam Nunn School Center for International Strategy, Technology, and Policy (CISTP) provided an overview of the various fora/communities and methodologies that comprise the security assurance ecosystem – often also referred to as the Information Assurance.  This ensemble has over the past ten years produced an expanding array of standardized platforms that are being used today to enhance the trust and lower the risks inherent in all computer based networked systems – also referred to as “hardening.”  Mantras among these entities include “making security measureable” and “know your weaknesses; know their attacks.”  Unrealistic notions of absolute security are becoming transformed into more pragmatic approaches that place the emphasis on risk assessment and automated security systems.

This ecosystem has grown dramatically in scale, activity and globalization over the past several years.  The expansions include not only important new platforms such for Continuous Monitoring (CM) and Threat Intelligence Exchange (STIX), but also public mobile infrastructures and services, as these systems and their users become exposed to a rapidly expanding array of exploits.

View Video > (Runtime: 70:35 minutes)