Improving Cognitive and Collaborative Support for Security Threat Hunters

改善对安全威胁猎人的认知和协作支持

基本信息

  • 批准号:
    571669-2021
  • 负责人:
    Storey, MargaretAnneMA
  • 金额:
    $ 2.19万
  • 依托单位:
    University of Victoria
  • 依托单位国家:
    加拿大
  • 项目类别:
    Alliance Grants
  • 财政年份:
    2022
  • 资助国家:
    加拿大
  • 起止时间:
    2022-01-01 至 2023-12-31
  • 项目状态:
    已结题

项目摘要

Threat hunters, a relatively new security analyst position, play a critical role in ensuring the security of critical Canadian corporate and government agency systems and data. Threat hunters monitor how data, systems, and networks are accessed to be aware of possible threats and incidents that may occur before systems or data sources are compromised. Often working in teams, threat hunters generate hypotheses and proactively analyze massive amounts of system and network data to detect and isolate the anomalous system and human behaviours that may indicate an impending threat. However, the current tools used by threat hunters have been developed without a good understanding of their cognitive and collaborative needs. Through this collaborative project, we will develop an understanding of the different types of threat hunter personas (their capabilities, motivations, goals, and collaboration strategies). Using these insights, we will design, develop and evaluate novel tools for threat hunters to more effectively visualize and analyze information on possible threats, and share their insights with other threat hunters and key stakeholders. These insights and tool prototypes will enable Micro Focus, our partner organization, to improve the tools and techniques they use to support threat hunting.
威胁猎人是一个相对较新的安全分析师职位,在确保加拿大企业和政府机构关键系统和数据的安全方面发挥着关键作用。威胁搜寻者监视访问数据、系统和网络的方式,以便在系统或数据源遭到破坏之前了解可能发生的威胁和事件。威胁猎人通常在团队中工作,生成假设并主动分析大量系统和网络数据,以检测和隔离可能表明即将发生威胁的异常系统和人类行为。然而,目前威胁猎人使用的工具是在没有很好地理解他们的认知和协作需求的情况下开发的。通过这个协作项目,我们将了解不同类型的威胁猎人角色(他们的能力、动机、目标和协作策略)。利用这些见解,我们将为威胁猎人设计、开发和评估新的工具,以更有效地可视化和分析有关可能威胁的信息,并与其他威胁猎人和关键利益相关者分享他们的见解。这些见解和工具原型将使我们的合作伙伴组织Micro Focus能够改进他们用于支持威胁搜索的工具和技术。

项目成果

期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
    {{ item.journal_name }}
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Storey, MargaretAnneMA其他文献

Storey, MargaretAnneMA的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
    {{ item.journal_name }}
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}
立即体验

相似海外基金

Collaborative Research: Using Adaptive Lessons to Enhance Motivation, Cognitive Engagement, And Achievement Through Equitable Classroom Preparation
协作研究:通过公平的课堂准备,利用适应性课程来增强动机、认知参与和成就
  • 批准号:
    2335802
  • 财政年份:
    2024
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: Using Adaptive Lessons to Enhance Motivation, Cognitive Engagement, And Achievement Through Equitable Classroom Preparation
协作研究:通过公平的课堂准备,利用适应性课程来增强动机、认知参与和成就
  • 批准号:
    2335801
  • 财政年份:
    2024
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: Referential alarm calling as a window into the mechanisms and evolution of a complex cognitive phenotype
合作研究:参考警报呼叫作为了解复杂认知表型的机制和演化的窗口
  • 批准号:
    2417581
  • 财政年份:
    2024
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Continuing Grant
Collaborative Research: Using Adaptive Lessons to Enhance Motivation, Cognitive Engagement, And Achievement Through Equitable Classroom Preparation
协作研究:通过公平的课堂准备,利用适应性课程来增强动机、认知参与和成就
  • 批准号:
    2335800
  • 财政年份:
    2024
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: NCS-FR: DEJA-VU: Design of Joint 3D Solid-State Learning Machines for Various Cognitive Use-Cases
合作研究:NCS-FR:DEJA-VU:针对各种认知用例的联合 3D 固态学习机设计
  • 批准号:
    2319619
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Continuing Grant
A Stepped-Care Approach to Treating Dental Fear: A Sequential, Multiple Assignment, Randomized Trial For Cognitive-Behavioral Treatment via Mobile App and Evidence-Based Collaborative Care
治疗牙科恐惧症的阶梯式护理方法:通过移动应用程序和循证协作护理进行认知行为治疗的序贯、多重分配、随机试验
  • 批准号:
    10729822
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
Collaborative Research:FW-HTF-P: The Future of Virtual Teams: Enhancing Collaborative Creativity and Socio-cognitive wellbeing in Video-based Teams
协作研究:FW-HTF-P:虚拟团队的未来:增强基于视频的团队的协作创造力和社会认知福祉
  • 批准号:
    2222764
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: NCS-FR: DEJA-VU: Design of Joint 3D Solid-State Learning Machines for Various Cognitive Use-Cases
合作研究:NCS-FR:DEJA-VU:针对各种认知用例的联合 3D 固态学习机设计
  • 批准号:
    2319617
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: Cognitive Workload Classification in Dynamic Real-World Environments: A MagnetoCardioGraphy Approach
协作研究:动态现实环境中的认知工作负载分类:心磁图方法
  • 批准号:
    2320491
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Standard Grant
Collaborative Research: NCS-FR: DEJA-VU: Design of Joint 3D Solid-State Learning Machines for Various Cognitive Use-Cases
合作研究:NCS-FR:DEJA-VU:针对各种认知用例的联合 3D 固态学习机设计
  • 批准号:
    2319618
  • 财政年份:
    2023
  • 资助金额:
    $ 2.19万
  • 项目类别:
    Continuing Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了