![Page 1: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/1.jpg)
Next Generation Threats and Utilising Artificial
Intelligence and Big Data Analytics
Ian Glover
0044 7970 817 101
![Page 2: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/2.jpg)
The CREST Vision
Not For Profit
Organisation
![Page 3: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/3.jpg)
Industry Support Research Guides
Pen Testing
Maturity Model
![Page 4: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/4.jpg)
Social Responsibility Research
![Page 5: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/5.jpg)
Current Research Activities
• SOC Accreditation
• Cyber Security Chartered Status
• Bug Bounty
• Wider Neuro diversity – Dyslexia
• Penetration Testing Standards
• Social Engineering In Penetration Testing
![Page 6: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/6.jpg)
Schemes
Penetration Testing Cyber Security Incident Response
(CSIR)
Penetration Testing Threat Intelligence
Penetration Testing Cyber Incident Response
(CIR)
Penetration Testing Threat Intelligence
NSA NSCAP CIRA (Cyber Incident Response Assistance)
![Page 7: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/7.jpg)
Reduce Threat Reduce Vulnerability
Avoid Detect
Recover
![Page 8: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/8.jpg)
Reducing Threat Very Difficult
![Page 9: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/9.jpg)
Reduce Threat
![Page 10: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/10.jpg)
AI In Threat Reduction
• Artificial Intelligence is being used to combine huge amounts of threat intelligence
• Geopolitical
• Big Data
• Social Media
• Dark Web
• Company or Sector Target Information
![Page 11: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/11.jpg)
Penetration Testing And Implementation Of Technical
Standards Reduces Vulnerabilities
![Page 12: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/12.jpg)
How To Decide What Level Is Required?
![Page 13: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/13.jpg)
Basic Levels of Assurance. Alignment with schemes such as Cyber Essentials. No specific industry orientation
High Levels of Assurance. Aligned to industry Simulation of known industry threats
![Page 14: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/14.jpg)
AI In Vulnerability Assessment
• Very difficult to support the lower end of the market due to a lack of resource and cost
• Attack tools are more automated and sophisticated and therefore the analysis tools need to keep pace
• We need to assess outcome based results of tools (this needs to be the approach for other professions)
![Page 15: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/15.jpg)
![Page 16: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/16.jpg)
Cyber Essentials
![Page 17: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/17.jpg)
Cyber Essentials
![Page 18: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/18.jpg)
Evolve To Meet New Generation of Attack
Tools
![Page 19: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/19.jpg)
AI In Basic Cyber Hygiene
• We must be investing in new ways to combat the new generation of threats
• We might need to change the model of protection – mafia against small shops is not a fair fight
![Page 20: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/20.jpg)
Traditional Penetration Testing
More Formally Link With Existing Security
Standards
![Page 21: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/21.jpg)
Establish Minimum Standards That Are Not Too Prescriptive
and Can Evolve Quickly
![Page 22: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/22.jpg)
AI in Security Management and Audit
• The concept of continual security management should the topic of research (monitoring policy compliance, security improvement plans, personal security compliance etc.)
• Traditional views of period audit should move towards continual audit
• Traditional audit firms are working our what this means to their business
• In cyber we could take a much more proactive approach in all of these areas
![Page 23: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/23.jpg)
Critical National Infrastructure
![Page 24: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/24.jpg)
Intelligence Led Penetration Testing Services
Target Environment
Skill and knowledge of tester
Tools based on known vulnerabilities and attack
vectors
Validation from peer groups and informal
discussion forums
OWASP and other public sources
Company Research
Published Cyber Threat Intelligence
Up-to-date
incident data
Up-to-date
threat intel
![Page 25: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/25.jpg)
Emerging Cyber Threat Intelligence
![Page 26: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/26.jpg)
Evidence Based
Contextualised
![Page 27: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/27.jpg)
CBEST / TBEST
![Page 28: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/28.jpg)
Critical National Infrastructure
Potential Schemes Domestic
+
Civil Nuclear
Energy
Space
Water
Defence
Emergency Services
Chemical
Transport
Health
Food
![Page 29: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/29.jpg)
AI In Threat Intelligence
• AI (artificial and augmented) is the basis and the reason that the new Cyber Security Threat Intelligence industry exists an d is flourishing
![Page 30: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/30.jpg)
Also Exercise Continuity Plans Against Real Life
Scenarios
![Page 31: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/31.jpg)
Detect
![Page 32: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/32.jpg)
Continual Threat Monitoring
![Page 33: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/33.jpg)
SOC Accreditation
![Page 34: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/34.jpg)
SOC Accreditation
Document Review
On Site Audit
Technical Evaluation
![Page 35: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/35.jpg)
AI In SOC
• SOC utilise big data analytics
• Professionally run SOCs are already saying that they use AI
• The AI services should be used as a way of supporting the decisions of the SOC analysts and management
![Page 36: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/36.jpg)
Invocation Before Attack
![Page 37: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/37.jpg)
Heighten Awareness Configuration Review
Update Penetration Test
![Page 38: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/38.jpg)
Recover
![Page 39: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/39.jpg)
Cyber Security Incident Response
• Again difficult to provide support at the lowest level
• AI utilised for malware reverse engineering
• Can we build AI concepts into CERTs
• Can we build AI into the information exchanges
![Page 40: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/40.jpg)
AI In The Profession
Existing CREST Qualifications
Multiple Choice
Practical Long Form
Non Licence To
Trade Fellowship
![Page 41: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/41.jpg)
We Have A Skills Shortage!
We need to upskill our existing workforce
We need to encourage more talented people into our industry
![Page 42: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/42.jpg)
All Professions Impacted by AI and Big Data Analytics
![Page 43: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/43.jpg)
How does a market react to the need to upskill an exiting work force?
How does a market react to difficulties
in the recruiting talent?
![Page 44: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/44.jpg)
Operated as an industry without Chartered status
What has changed?
![Page 45: Next Generation Threats and Utilising Artificial Intelligence and … · 2018-02-15 · Next Generation Threats and Utilising Artificial Intelligence and Big Data Analytics Ian Glover](https://reader034.vdocument.in/reader034/viewer/2022042118/5e9726d03429926955244fa3/html5/thumbnails/45.jpg)
Balanced Assurance Programme
Reduce Threat
Detect
Reduce Vulnerability
Recover