TOP CYBER NEWS

MAGAZINE JUNE 2022

Scott D. FOOTE
P H E N O M E N A T I C O N S U LT I N G

The Time is Now

Editorial article by

D r. S a l l y E AV E S
CYBER ENTROPY Chief Technology Officer
Professor in Advanced Technology
 MEDIA
Ally of the Year 2022

Thank You!
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 2
I think it’s
IMPORTANT

~ Annie PROULX

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 3

 Cybersecurity: The Time Is Now For
Collaboration, Culture and Convergence!

Editorial by Dr. Prof. Sally EAVES, ENGLAND “I believe the time is now to reduce the
The time is now to come together and build a cost of security and forge a more powerful
contagion of collaborative change around connected future – let’s do it together! “
cybersecurity progress. As industries, businesses
and consumers become ever more reliant on a
connected economy, its catalyst as the foundation
for digital transformation will grow. This must be
underpinned by security embedded by design
across software and hardware, addressing rising
threats across bad actor collaboration, IoT, Cloud
and API acceleration, ransomware, phishing,
Log4j, DDoS… The list goes on! But we can and
must fight back.

I believe this can be achieved in 3 ways:

Firstly, through collective industry effort. This
takes cross-sectoral thinking across business,
technology, academia and citizens, establishing a
baseline of best practice. Look out for a ‘call-to-
arms’ research-to-action piece on IoT security in
early 2022 bringing this very approach to life.
Secondly, progress necessitates convergence,
comprising technology integration and
convergence of thinking too. Cybersecurity
cannot be considered in isolation, there is a clear
social impact perspective with communities left
behind in terms of connectivity, similarly
disadvantaged around security and environmental
factors. The digital divide is frequently a
sustainability and cybersecurity divide - please Prof. Sally EAVES is Senior Policy Advisor and
look out for a related initiative in April 2022 with Chair of Cyber Trust for the Global Foundation of
my non-profit Aspirational Futures. Cyber Studies and Research, and CEO of
Thirdly, this all takes investment in education Aspirational Futures which enhances inclusion
culture and ‘changing the narrative’ on what and diversity in education and technology.
cybersecurity careers ‘look like’ to close talent A highly experienced Chief Technology Officer,
gaps. Data literacy needs are not confined to Professor in Advanced Technology and Global
technology-facing roles or the security Strategic Advisor, Sally is an International Author
department, everyone must be empowered with and Keynote Speaker on Digital Transformation
access, enabling the actualisation of shared (AI, Security, IoT, 5G, Cloud, Blockchain)
responsibility culture. The earlier we can start the alongside Culture, Skills, Sustainability and SDGs
better! look out for my new non-for-profit Impact. Sally is editor of Cyber Insights, has
cybersecurity book this year focussed at children developed courses across the data and
– let’s build curiosity with fun learning and inspire technology discipline spectrum and is publishing
the next-generation of security leaders too! her new book ‘Tech For Good’ in 2022.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 4
 Award Winning
Digital MAGAZINE
About People
By People
For People
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 5
Scott D. FOOTE, Managing Director at Phenomenati Consulting
CISO, CPO/DPO, Cybersecurity Executive, Board Advisor, CISSP, CCSA, CCSP, CISM, CDPSE, CIPM,
CRISC, CISA, currently a Managing Director with Phenomenati, Scott Foote is a globally recognized
thought leader and subject matter expert with more than 35 years of technology leadership experience
in cybersecurity and the broader software industry, Scott is an experienced cybersecurity executive,
designing security and privacy into digital transformation initiatives for his clients. Scott has an acute
ability to understand and map organizational needs to security models, architectures, solutions, and
technologies. His primary area of technical expertise has been information security since the late
1980s. Driven to deliver high impact, his leadership experience includes building and leading growth-
dominated products and services teams, organizations, and startups from 10 to 1000 at Digital
Equipment Corporation, Oracle Corporation, OpenVision Technologies, Veritas Software, the MITRE
Corporation, and a series of technology startups.
An influential leader and communicator, Scott has authored several thought pieces on cybersecurity
from the original "Risk Formula" (in the 90s), to "Risk-Based Access Control" and the Cyber SA model
of "Network, Mission, and Threat" (in the 00s), to the recent "Cyber Entropy™", "5 What
Imperatives™", "7 Vectors of Cyber Risk Intelligence™", the "SOC Taxonomy™" and “Riskility™". He is
a frequent speaker at industry events, is a member of several industry consortia (ISC2, ISACA, ISSA,
Infragard, IAPP, and the Fair Institute), sits on a number of advisory boards and has been a member of
the board of directors for enswers, Inc., Axixa Corporation, Realocity, Inc., Protinuum, LLC, and the
Boston Affiliate of the Susan G. Komen Breast Cancer Foundation.
Scott currently holds a number of industry certifications; including: Certified Information Security
Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Cyber
Security Architect (CCSA), Certified Cloud Security Professional (CCSP), Certified EU GDPR Data
Protection Officer (DPO), Certified Information Privacy Manager (CIPM), Certified Data Privacy
Solutions Engineer (CDPSE), Certified in Risk and Information Systems Control (CRISC), Certified
Information Systems Auditor (CISA), and Certified Information Security Management System Auditor
(ISO/IEC 27001).
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 6
 Taxonomy of a SOC™
The Top 20 Capability Areas for
Cyber Security Operations
by Scott D. FOOTE
CISO I CPO/DPO I Managing Director I Founder
At Phenomenati, we spend a lot of time
working with clients to evolve their Cyber
Security Operations efforts.
This can involve process (re)engineering,
staffing, technology evaluations, and even
system deployments; for teams ranging
from a “force of 1” to dozens. But every
engagement starts with establishing clarity
on two points – 1) Where are you now?
and 2) Where do you want to go?
To facilitate that discussion we have
developed a high-level “Taxonomy of a
SOC”. It’s a reference model, based on the
top 20 capability areas that we repeatedly
see Cyber Security Operations teams
working to address.
That’s a large number of topics to cover,
so we have organized them by the 7 major
challenges that most Cyber Security
Operations teams wrestle with, or will as
they grow:
1. Knowledge of one’s own cyber
infrastructure (including ICS, IoT, etc.)
SOC Taxonomy – For Cybersecurity Operations
2. Threats emerging in cyberspace
3. Management of Access Controls
4. Monitoring and Detection
5. Informed Incident Response
6. Forensic Investigation, and
7. Visibilit y through advanced repor ting
The list of capability areas is a broad
superset, and is intended to be descriptive
rather than prescriptive. It’s offered
strictly as a reference model to inform
Security Operations roadmaps, or simply
to help teams manage expectations with
their stakeholder and leadership
communities. The following is an outline of
the taxonomy:
K n o w l e d g e o f o n e’s o w n c y b e r
infrastructure
• Capabilit y Area 1) Asset &
Configuration Management
• Capabilit y Area 2) Asset Discover y
• Capabilit y Area 3) Business
Dependency Mapping (e.g., "Business
Impact Analysis", or "Mission Mapping")
7
 >> by Scott D. FOOTE

Threats emerging in cyberspace Any one of these topic areas on its own, is
• Capability Area 4) Cyber Threat Intelligence (e.g., broad enough to require a more detailed
"CTI" and Threat Intel Platforms or "TIPs") inventory of specific capabilities and
Management of Access Controls requirements. Which may explain why so
• Capability Area 5) Identity Management many mature SOCs employ an average of
• Capability Area 6) Authentication more than 50 individual tools and
Management technologies.
• Capability Area 7) Authorization
Management
• Capability Area 8) Privacy/Confidentiality
Management
Monitoring and Detection
• Capability Area 9) Instrumentation (Sensors &
Tuning)
• Capability Area 10) Monitoring (Collection,
Aggregation)
• Capability Area 11) Detection Analytics (e.g., "Big
Data" security analytics)
• Capability Area 12) Visualization (e.g., Analyst's
dashboards, operational pictures)
Informed Incident Response
• Capability Area 13) Consequence Analysis
(e.g., answering the " So What?"
imperative)
• Capability Area 14) Incident Response (IR)
Workflow
• Capability Area 15) Countermeasure Scott D. FOOTE quote: "Why Aren't We
Management (e.g., "Playbooks") Getting Better at Cyber? - Perhaps because
• Capability Area 16) Response Action too many seek simple solutions to a complex
Management (e.g., "Security Automation &
problem?
Orchestration")
Fo r e n s i c I n v e s t i g a t i o n Security in a world of wilful, sustained
• Capability Area 17) Digital Forensics (DF) Conflict cannot be ensured thru a technology
Analysis or a compliance checklist. Few even
• Capability Area 18) Case Management acknowledge the Conflict exists or their active
• Capability Area 19) Digital Evidence
role in it. Choosing instead to focus on
Management
mitigations of singular events as though they
Visibility through advanced reporting were one-off accidents or happenstance.
• Capability Area 20) Enterprise Reporting (e.g.,
KPIs, GRC, and beyond) To get "better" at Cyber (meaning specifically
to be more effective at reducing the Risks of
exploitation by skilful adversaries executing
long-term sustained attacks and strategic
compromise) requires investment in
developing or hiring defensive forces on par
with your adversaries. This is a massive, N-
dimensional chess game, with no rules. Most
don't even realize they are participating. Of
those that do, the majority dive in like it's Tic-
Tac-Toe with a child opponent.”
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 8
 The Cyber Entropy
of Digital Transformation
Demands Risk Discipline
by Scott D. FOOTE

“At P h e n o me n at i , w e h a v e be gu n t o e m p lo y a n e w R 3 ( " R
cubed") Marketscape to characterize an organization
b a s e d u p o n i t s r e a c t i o n s t o c o n t e m p o r a r y m a r k e t t r e n d s .”

Within this Marketscape, the first “R” characteristic is how Responsive the organization is to
new opportunities. (Some refer to this characteristic of an organization as it’s Risk
Appetite.) We measure responsiveness on a scale from Digital Trepidation (e.g., market
followers) to Transformation (e.g., market leaders); as both institutional fear and the Cyber
Entropy™ state of disorder, randomness, and uncertainty resulting from untamed Digital
Transformation are powerful market forces which nearly every organization must balance
today.

The second “R” characteristic is how Responsible the organization is in supporting its
obligations to stakeholders, minimizing risk while optimizing value. (Some refer to this
characteristic of an organization as it’s Risk Tolerance.) We measure responsibility on a
scale from Preservation to Protection. These are also powerful market forces pulling on
organizations today, where they must choose whether to simply preserve their current value
(minimizing investments in “due care”) or proactively protect the business as Threats
continue to increase unchecked in both quantity and sophistication.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 9
>> by Scott D. FOOTE

The third “R” characteristic represents the Risk Discipline which the
organization demonstrates in their Risk Management program within its
Information Security & Privacy Strategy. We measure risk discipline on a scale
representing the focus on Efficiency versus Effectiveness. Organizations which
focus primarily on metrics which represent the efficiency of their information
security & privacy, rank far left on this scale. While those which focus on actual
effectiveness of their controls can directly demonstrate the impact on the
business from their investments in information security & privacy.

Mapping organizations along these 3 vectors of the R3 Marketscape we find

they tend to cluster together in easily recognizable patterns.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 10

>> by Scott D. FOOTE

The first obvious pattern is that of “Cyber Complacency”. Here in the lower-left of
the R3 Marketsc ape we find organizations that demonstrate lower responsiveness to
market oppor tunities (e.g., Digital Trepidation) and a predominant focus on simply
preser ving current value. These “Risk Ignorant” organizations tend to be unaware of
the inherent risks surrounding them, and implicitly accept much of that Risk b y
emphasizing efficiency and cost containment in their investments in Information
Securit y & Privacy.

The next familiar pattern describes organizations constantly seeking a state of

“Cyber Tranquilit y”. This upper-left corner of the R3 Marketsc ape is where “Risk
Averse” organizations tend to recede while investing more responsibly in proactive
protection measures; often deferring or completely rejecting the risks associated
with new oppor tunities, ultimately hindering the growth of the business. It is wor th
noting and somewhat unsurprising that Cyber Insurance providers (underwriters) are
most comfor table writing policies for organizations in this corner of the R3
Marketplace.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 11

>> by Scott D. FOOTE

The third pattern (in the lower-right of the R3 Marketsc ape) groups together
organizations mired with untamed “Cyber Entropy™”. The environments within these
“Risk Taker ” organizations demonstrate the exact opposite of “Zero Trust” – all
devices, software, data, traffic and entities on their networks are implicitly truste d
and assumed to be suppor ting some new transformative initiative. Here, the
principle of “Least Privilege” is deemed too restrictive. Administrative privileges are
ubiquitous and considered an entitlement . End-of-Life (EOL) devices and software
abound, foreshadowing the Cyber Zombie Apoc alypse. Unauthorized shadow IT
initiatives thrive. Undisciplined Digital Transformation has led to IoT devices
continuously invading unsegmented corporate networks. OT/ICS/SCADA systems and
networks may connect directly to the corporate backbone. And conventional
perimeters have dissolved as core business systems have migrated to “the cloud”.
Where Risks are not explicitly accepted, these organizations often attempt to
transfer the Risk to their 3rd par t y service providers.

The four th and final pattern is that of “Cyber Prosperit y” depicted in the upper-right
of the R3 Marketscape. Unfor tunately, most organizations arrive in this hallowed
corner of the Marketsc ape only after experiencing and surviving a signific ant digital
compromise or data breach on their journey into “Cyber Entropy”; and receding at
least once into that safe zone of “Cyber Tranquilit y ” where defensive investments in
protection are most common.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 12

>> by Scott D. FOOTE

These “Risk Disciplined” organizations show the greatest promise as they

continuously work to mitigate their Risks; seeking responsible ways to say “ Yes” t o
new business oppor tunities and challenges while driving down the Residual Risks to
acceptable levels. Many of these organizations demonstrate the maturit y of their
Risk Discipline through concepts including :
• Enterprise - scale Risk Scenarios based upon specific Threats, Vulnerabilit y, and
Consequences; used to structure clear communic ation between the executive
team and the board.
• To Prioritize these Risk Scenarios, the leadership team regularly collaborates to
assess each Scenario qualitatively and quantitatively.
• Control Matrices are associated with each Risk Scenario enumerating Defense -
in-Depth along the basic dimensions of Control Type (administrative, physic al,
and technical) and Control Objective (preventative, detective, and corrective).
• Risk Level Agreements™ (RLA) are documented for each Risk Scenario,
describing the decisions to accept, reject, mitigate and/or transfer the Risks
based upon a cost-benefit analysis (CBA).
• Information Securit y & Privacy Strategies are developed and continuously
evolved which include Strategic Objectives and Key Initiatives based upon these
RLA and Control Matrices.
• And Trust Through Transparency is a fundamental business principle suppor ting
top-line revenues with annual 3rd par t y industr y cer tifications (e.g., ISO 27001,
SOC 2, etc.).
The inevitable Cyber Entropy brought on by contemporar y market forces such as
today’s Digital Transformation, demands this level of mature Risk Discipline,
continuously balancing the need to be both Responsive & Responsible in pursuing
new market oppor tunities .
Phenomenati has introduced this R3 Marketsc ape as a means to Bring Order to
Chaos for our clients; helping organizations describe where they are today, where
they want to be in the future, and the path that journey will likely take.

Where do you see

your organization on
this R3 Marketscape?

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 13

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 14
15
 Information Security
Career Path
by Shahzad SUBHANI
Every day in our professional life, we come
across people who work in the field of
Information Technology and want to pursue
their career into the field of Information
Security due to their personal and professional
motives. At the same time, you come access
students and fresh graduates who have heard
of the buzz word Information Security or cyber
security and want to begin their career in it. I
will try to address all of them in this article.
Dear Ludmila, thank you for inviting me to
share my thoughts in this innovative ‘Top Cyber
News’ MAGAZINE. I am so pleased to
participate in such a discourse regarding such
an important issue.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved
How to get started
If you are already working in IT field, then you
can start from point 3 onwards. However, if you
are a student or a fresh graduate then you
should be starting from point 1.
1. Get yourself registered on any of the following
sites and enrol yourself in free basic security
courses i.e., introduction to security,
cybersecurity basic, building cybersecurity
toolkit, etc. A Very important point to remember
is that most organizations are looking for
experienced resources. If they can’t find
experienced people then they might go for
people who are smart, ready to learn and have a
good grasp on networking concepts. To have
those kinds of skills, below mentioned resources
can help you a lot.
a) edx b) Cybrary c) UDEMY d) SANS
e) GISPP Academy Videos
f) For Urdu Speakers, URDU IT Academy
16
>> by Shahzad SUBHANI

2. Use the “For Dummies” series publications

for learning, some good recommendations
are given below. You can also find many good
articles on their website.
Computer Security for Dummies
Network Security for Dummies
Hacking for Dummies
Cyber Security for Dummies
Computer Forensics for Dummies
Computer Virus for Dummies
Hacking Wireless for Dummies
Firewall for Dummies
Rootkits for Dummies
3. Some most common information security
domains are mentioned below. You should
Identify the security domain of your interest. I
suggest you to choose an area which you
enjoy the most and find interesting. It could
be network security, email security, security
operations, endpoint security, risk
management or information security
governance. Once identified, focus your
knowledge and attention on that domain. For
each domain, there are some vendors, who
are leaders in that domain and most of them
have very good learning resources available
on their website or YouTube channels.
Information Security Domains
Network Security (Intrusion Detection
Systems / Intrusion Prevention Systems /
Firewalls / Next Generation Firewalls); @Symantec @JuniperNetwork @Unit42_Intel
Compliance (ISMS, PCI, and other standards); s
@CiscoSecurity @PaloAltoNtwks @dvk01uk
Vulnerability Assessment / Vulnerability @threatintel @TalosSecurity @Mandiant
Management;
@NakedSecurity @avast_antivirus @qualys
Penetration Testing / Ethical Hacking /Red
@IBMSecurity @CISecurity @SearchSecurity
Teaming;
@FireEye @securitytwits @WindowsATP
IoT (Internet of Things); @QradarUG @SANSDefense @SwiftOnSecurity
Enterprise Security Architecture (ISSAP, @CISAgov @GbhackerOn @bitdefender
TOGAF, SABSA); @SANSPenTest @IBMSecurity @moixsec
Pre-Sales (Technical / Marketing); @metaspolit @cnn @Peerlyst

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 17

>> by Shahzad SUBHANI

5. For a computer science graduate, there are

different options while entering the Job
Market. These Options are Programmers,
Sales, Technical Sales, Technical
Implementation etc. You can focus on one of
these Positions depending on your
personality, skill set, opportunity and
interests. Out of these fields, you can get
more learning from technical implementation
field and especially if you can get a job at a
service provider, you will be given
opportunity to work on many different
products and solutions.
6. Technical Sales and Programmers are in
demand by many Companies however it
needs mor skills and years of experience so
you might not be able to start with it directly
however with time and experience, you
should be able to shin like a star in your
organization.

Key Areas to Study

1. Before entering the Job Market, Refresh
your concepts about Each Security domain.
Revise your knowledge regarding OSI Layers,
TCP/IP and other Protocols like HTTP, SMTP,
SNMP, HTTPS etc.
2. Study and learn about application security
guidelines, especially from OWASP.
3. Learn about Corporate Firewalls, Corporate
Endpoint Protection Solutions and Email
Gateways from publicly available documents
and Videos. In today’s world most
organization are using EDR and XDR and
SOAR Platforms. Read about them and get
familiar with their functionality
4. Learn to read and understand logs in order
to develop log analysis skills.
5. Try to Setup a lab or join any online paid
labs and work on tools like Kali Linux or
Ubuntu, Python and PowerShell languages.
6. Get in touch with security professionals
and expand your circle by attending security
conferences, seminars and webinars.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 18

>> by Shahzad SUBHANI

concise manner. some of the important skills

are given below. Basic Emulator & Basic Services
Protocols
Presentation Skills Listening Skills Creativity Skills Terminal Tools knowledge
Communication Reading Skills Time Management
Skills Skills
Cygwin Web services (Apache TCP/IP
Writing Skills Situation Handling Teamwork Skills
or IIS)
Skills
Verbal Skills Problem Solving Public Speaking
MobaXTerm Proxy services (Squid IMAP
Skills Skills
or ISA)

Te c h n i c a l S k i l l s Putty Mail service (Sendmail POP

and Exchange)
Your technical skills are your weapons, and
you need to refine them as well as familiarize Secure CRT Snoop SMTP
yourself with new ones as technology is FTP, TFTP Iptables or route tables Kerberos
changing rapidly these days.
SFTP, WinSCP NFS services SSH
Network Security Scripting Web Security
(VB / Batch / Wireshark SMB services SSL
Power Shell )
System Security C or C++ Unix / Linux Trace route DHCP services TLS
Database Security Python Regex creation
Kubernetes SQL Cloud Security NMAP DNS Services Protocols /
Security Ports
DevSecOps Data Analytics AI for Security

Suggested Certification Roadmap

Given below is a suggested certification and skills roadmap. Most People go for CISSP in the
beginning of their career which is not recommended, and it won’t be helpful at all as some of
the concepts and domains will be new to you and might fly right over your head. You should
aim for it after spending a few years in any of the Information Security domain.

Experience Suggested Certification / Skills Skills Method

Fresh Graduate/Less CCNA, CCNA Cyber Ops MCP, Networking, Infrastructure, Operating Self-Study Or join an
than a year RHCE, Security+, Network+ Systems, Standards Institute
MCSE, Vendor Certifications, Advanced knowledge of OS, Applications, Self-Study
Between CEH, ISO 27001 LI/LA Firewalls, Log Analysis Vulnerability
Year 1-Year 5 Assessment, Penetration Testing, Security
Applications / Tools

OSCEE, CISA / CISSP / CISM, Security management, advance penetration Self-Study

GIAC, CHFI, CCSP, OSCP testing / incident handling / forensics, Cloud
Year 5 onwards
Security

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 19

Shahzad SUBHANI, S a udi A r ab i a
Shahzad SUBHANI is an information security enthusiast with 20 years of experience in different
information security domains. He is an electrical engineering graduate with majors in electronics
and communication from UET Lahore, Pakistan.

As a Professional, he Started his career by Implementing Corporate Antivirus Solutions and

Firewalls. Over the past years, He has worked on many information security solutions. He is not
afraid of getting his hands dirty while experimenting new Security Solutions. Currently he is
working in a Saudi Bank as an information security consultant. Specific areas of his core expertise
includes Email Security, Malware Protection, Security Operations Center (SOC) , Data Loss
Prevention, Encryption, Incident management, Digital forensics and SIEM Solutions. He is a
hands-on guy and always keen to mentor and share knowledge with his colleagues and juniors.

Shahzad Subhani is proud founder of GISPP (Global Information Security Society for Professionals
of Pakistan) which has members from 18 different countries. GISPP platform has brought many
Pakistani Infosec professionals together in order to share knowledge as well as to support each
other professionally. Shahzad firmly believes in spreading education without any financial
motivations and gains. In order to do so, he has started writing articles as well as created videos
on different information security topics. He has also motivated many other professionals to share
their knowledge and more than 100 videos on different hot topics can be seen on his YouTube
Channel named as GISPP Academy. Shahzad’s Published articles can be seen at Medium as well as
on GISPP Security Blog Page.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 20
 The Emerging
Cyber Paradigm Concept
by Dr. Merrick S. WATCHORN, DMIST, QIS

According to the National Initiate for Cybersecurity Education (NICE), the NICE
Cybersecurity Workforce Framework (NCWF) provides a national resource, which
categorizes and describes common cyber related activities (NICE, 2022). The NCWF
provides organizations which require cybersecurity services a working approach to define
cyber security activities within the context of educational development. The NCWF was
established by various federal agencies, departments, offices, human capital, and cyber
subject matter experts with the stated goal of providing a working framework to aid in
lexicon development (NICE, 2020). This work effort resulted in the development of the
National Institute of Standards and Technology (NIST) Special Publication 800-181, NICE
Cybersecurity Workforce Framework (CWF, 2020). The major focal point of the framework is
found in the Cybersecurity Work Categories (CWC), which are 1) security provision, 2)
Operate and Maintain, 3) protect and defend, 4) oversee and govern, 5) analyze, 6) collect
and operate and 7) investigate (NIST CSF, 2020). Additionally, the seven work categories
have 33 specialty areas, 52 work roles, 119 ability, 614 knowledge, 359 skills and 928 task
related terms and definitions (NIST, 2020).

As an interesting side note, the controls, which are selected by the NIST CSF provides a
concrete overlay with the Protecting Controlled Unclassified Information in Nonfederal
Information Systems and Organizations, NIST SP 800-171 as outlined by NIST release in
2020. This means that for the first-time in modern history you have a mapping between job
functions and security control to a role and responsibility matrix. Within the NCWF contains
a mapping to specific CSF statements, which intern links to the three documents in question
together via the security control mapping. For example, the category Securely Provision
provides a direct mapping to two CSF statements as listed above, which means that the
seven category specialties are aligned to known cybersecurity critical infrastructure
protection guidelines. Currently, NIST has published over 45 documents, which have been
mapped to the current version of the NIST SP 800-53 Rev. 5. Thus, we can calculate the
importance of a given security control by counting how many times a given control shows
up in NIST guidance, the formula would be as simple as (Control Importance = (Control
Count / NIST Publication) or CI = CC / NP for short. Using this formula, the calculations for
the importance of AC-1 as defined by NIST result in the following calculation CI = 8 / 45,
thus the CI of AC-1 would be 17.78%. With this type of analysis, we can see what NIST has
placed common importance of security controls against. The highest scoring security
control within the NIST SP 800-53 Rev. 5 based on this approach would be SA-4 -
Acquisition Process with an overall score of 25.56%. The lowest ranking security control
would be PM-2 - Senior Information Security Officer with an overall score of 3.33%. Thus,
to manage the impact of all security policies that deal with mobile, wireless and account
should be updated the ability to review the Cybersecurity Workforce Framework (CWF) to
determine where the Information Technology Conflict Convergence (ITCC) occurs.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 21
>> by Dr. Merrick S. WATCHORN, DMIST, QIS

Organizations should consider an overhaul of its cybersecurity leadership ethos

from risk, or compliance and begin the process of understanding the technical
issues at hand. For example, the conflict of regulator compliance issues can
cause a misconfigured firewall or policy; however, in some instances this
happens to pass a compliance. The correct solution would be to segregate the
data and isolate environment, but that does cost more money.

As the diagram posits the span of cybersecurity is large with many stake -
holders leadership should consider how to leverage emerging technology,
training, and guidance to adjust its organizational training modalities to build
the next generation of leaders required to govern the impacts of cybersecurity.
With the (draft) of the CNSSI 1253 aligned to the NIST SP 800-53 Rev. 5, the
establishment of new cybersecurity boundaries are created to localize security
threats as well.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 22

Dr. Merrick S. Watchorn, D M I S T, Q I S ,
Wa shin gton D C , U SA

Dr. Merrick S. Watchorn, DMIST, QIS, is the Program Chair for the Quantum Security Alliance (QSA)
and his current research areas include Quantum Information Systems (QIS), High Performance
Computer (HPC), Cloud Computing (CC), Cybersecurity concepts, supply chain and open source
intelligence technologies. With over 35-years of pragmatic Information Technology experience, he
blends his efforts within government, commercial and academic endeavors. Dr. Watchorn spends his
time on injection innovation, creativity, critical problem solving into a myriad of efforts and activities to
support the QSA. In 2009, Dr. Watchorn invented the Cyber Exome Ancestry Tool (CEAT), which began
to explore the impacts of Cyber Awareness and Resiliency (CAR) concepts within the cyber domain.
Several white papers, technical analysis reports have been produced by this pioneering research
capability. This type of research acumen was the primary reason he was selected to be the Program
Chair for the QSA, and his selection of subject matter expertise was instrumental in the success of the
QSA’s research focused approach to emerging Quantum topics.

Dr. Watchorn has a Doctor of Management with a specialization in Organizational Leadership,

Information Systems and Technology from the University of Phoenix, School of Advance Studies
(UOP-SAS). With more than a dozen board certifications, including as a Social Media Intelligence
Analyst, Cyber Threat Forensic Investigator, Cyber Warfare Planner, and Professional Criminal
Investigator, he provides Critical Infrastructure Protection (CIP) thought leadership with his
relationships with numerous organizations. He is an adjunct professor at both the University of
Maryland and Pace University. As a result of his work, he was recently added to the Purdue Global,
Technical Advisory Board, McAfee Online Learning Institute, Board of Directors.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 23

 Putting Zero Trust
into Action
by Martin BORRETT, CTO IBM Security EMEA
and Jason KEENAGHAN, Zero Trust Strategy Leader WW

Trust. This isn’t a new concept. Many organizations – IBM included – talk about trust
in the value statements we share with the world. Our customers demand it. Our reputation
relies on it. It’s essential to everything we do. All of our businesses strive to build reputations
of being a ‘trusted partner’ or ‘trusted supplier.’ We do this:

➢ By developing quality products that deliver valued outcomes to our customers and by
delivering them reliably, however and whenever they are needed.

➢ By closely guarding the data and personal information for every user within our business
ecosystem – from employees to customers.

➢ By striving to be transparent when things go wrong. By putting our hands up, being
accountable and working quickly to rectify any mistakes.

And while these among other elements dictate how a business builds trust – good
cybersecurity is how you retain that trust. When cybersecurity is integrated into every aspect
of the business, it becomes part of the daily actions and routines for you and every user in the
organization’s ecosystem. It’s embedded into every operation, infused into every policy and
wrapped around every transaction. But to do this right…we must change the way we think
about and implement cybersecurity. Zero trust offers a better way to address the complexity in
security that is challenging our businesses today.

The philosophy behind a zero trust approach is simple: Nothing is trusted. Each user, each
device, and each connection into your business must be continuously authenticated,
authorized, and repeatedly verified. While the definition of zero trust may be simple – executing
this strategy can be incredibly complex. Numerous security tools must work together to make
zero trust a reality. Different teams must communicate and agree on priorities and policies to
make security consistent and effective. Information from every security discipline must be
combined to inform access decisions that can be enforced quickly and to make threat
response faster.

“Zero Trust is a journey. Where you start or where you go next is not the same for everyone.”
That decision is tightly connected with what you are trying to achieve – not just as a
cybersecurity program, but as a business. While we have seen many organizations progress
their zero trust journey by focusing on a specific security domain, for example Identity or
Network, or by implementing a specific security technology like Zero Trust Network Access
(ZTNA), those clients that are most successful, and that will realize a faster return on their
investment, are aligning their zero trust initiatives with their top business initiatives.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 24

>> by Martin Borrett and Jason Keenaghan

While by no means an exhaustive list, there are four initiatives that will benefit
greatly from taking a zero trust approach:
• Securing the remote workforce
• Protecting the hybrid cloud
• Preserving customer privacy
• Reducing the risk of insider threat

Each of these initiatives have clear business outcomes associated with them. In order to be
successful, each requires strong, integrated, multi-domain security capabilities.

“By applying the zero trust principles of least privilege; never trust, always verify; and assume
breach, you can: build a workforce that securely connects and works from anywhere, any device,
accessing data on any infrastructure; migrate operations to the cloud with confidence, with
integrated security controls and visibility across environments; deliver dynamic customer
experiences grounded in privacy and security; and reduce business disruption by responding to
attacks quickly with a targeted approach.”

While tools and products can help enable zero trust, they alone are not the answer. In many cases,
you may already have the right building blocks in your environment to work from. Focus on the
outcomes you are trying to achieve. Assess what you have available to you in your environment.
Where there are gaps identified, look for a solution that can integrate seamlessly into your existing
toolset. And build a deployment roadmap that starts small and iteratively builds on your foundation.

Growing and supporting a business that is built on a reputation of trust starts with a cybersecurity
program that is built on zero trust. When the time comes for you to tackle the challenge of another
business initiative, you will find that you are already well on your way, because you were taking a zero
trust approach from the start.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 25
Martin BORRETT is an IBM
Distinguished Engineer and Technical
Director for IBM Security across UK
and Ireland. He advises at the most
senior level in clients on strategy,
business, technical and architectural
issues associated with security. Martin
is co-author of the IBM Redbooks
"Introducing the IBM Security
Framework and IBM Security Blueprint
to Realize Business -Driven Security"
and "Understanding SOA Security".

He represents IBM at GFCE (Global

Forum on Cyber Expertise) and the
Industry Advisory Board of LORCA
(London Office for Rapid
Cybersecurity Advancement), is a
Fellow of the British Computer
Society, and a Chartered Engineer
(CEng). Martin has a passion for
sailing and has represented Great
Britain; he is also a keen tennis player.

Jason KEENAGHAN is the Leader for

IBM Security's zero trust strategy and
multi-domain security platform. In this
role, he is responsible for defining the
vision and delivering IBM's support of
zero trust through the combination of
technology integrations and services.
With more than 20 years experience in
the IT industry, ranging from product
management to software architecture
and development,

Jason collaborates closely with clients

and business partners to apply the
tenets of zero trust to help enable
organizations to achieve secure
business outcomes. Jason holds an
MBA from Marist College and a BA in
Economics, with a minor in Computer
Science, from Boston College.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 26

"We are a network of interconnected beings that secure and wrap the world. We
should act together and support each other in acquiring skills and knowledge.
Guarding the gates of access to knowledge and keeping it only to yourself is not
the right approach.

On the contrary, we should share knowledge - within reason - and skills, work
together, and be kind and respectful to each other. Because no matter what your
level is, the name of your position or the years of your experience, or the
certifications you possess - we are in it together, fighting with the same purpose.

Make sure you remember the bad guys aren't waiting." ~ Dorota KOZŁOWSKA
Top Cyber News MAGAZINE - June 2022 - All Rights Rerved 27
 Nobody’s an Island:
Collaboration is the key to
Neutralising Evolving Cyber-Attacks
by Jay HIR A
Our world is becoming increasingly
interconnected as we continue our journey
towards a digital-first future. Technologies like
the Internet of Things (IoT) are facilitating the
free flow of information through supply chains
across borders, enabling greater collaboration
and interdependence. This presents businesses
with the opportunity for unprecedented growth
and prosperity — much like the period after
World War II, when globalisation enabled the free
flow of people, capital, and goods across borders
for collective growth.
The growth post-WWII was a result of countries
deciding to tackle shared problems together.
While the present period promises a similar or
even greater potential for growth, a lack of rigour
in cyber security practices can also lead to
greater risks than ever before. It is estimated that
nearly half of all global organisations will have
experienced a cyber-attack by 2025 that
destabilises their operations. To combat such
threats, shifting the dial from a conventional
approach to adopting a Zero Trust approach as a
strategy and at the architecture level is the way
forward for organisations.
However, as interconnected ecosystems grow,
the problem of cyber security can get quite
complicated. With the rapid growth of business
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved
networks, detecting new vulnerabilities can
become increasingly challenging, leading to
shared consequences.
As we’ve stated before, cyber security is an
unfair fight where a single entity — a
business, in this case — has to simply resist
and weather the blows dealt by cyber threats.
It becomes even more unfair when you
partner with other entities, potentially
multiplying the number of threat vectors each
entity has to face. The only way to deal with
this onslaught is through collaboration in
cyber security, which involves businesses
sharing cyber security-related information with
each other to shore up their defences
collectively. In fact, they need to go beyond
that and share intel with other players in the
industry and even across industries to ensure
that the entire business community stays
protected against cyber threats.
Think of this collaboration as an extension of
the principles of neighbourhood watch —
where a group of civilians share information
with one another to safeguard their own
families and their neighbourhood from criminal
activity. Essentially, this means that sharing
threat intel enables businesses to defend
themselves as much as others from cyber-
attacks.
However, not everyone is too keen on
collaboration. Among the bigger reasons for
this is a lack of awareness regarding the
shared consequences, which may not be very
obvious in certain cases. For example,
consider open-source software, which
approximately 78% of businesses use for their
operations. In October 2021, UA-Parser-JS, a
widely-used open-source Java package, was
found to be compromised.
28
 >>
UA-Parser is downloaded approximately eight
million times a week and used by the big
names in the technology industry to build
applications, which got poisoned through
crypto mining and password-exfiltrating
malware.
Similarly, another popular open-source
package, log4j — which is also downloaded
millions of times and used by leading
corporations — also made news for containing
easy-to-exploit vulnerabilities. Fortunately,
quick updates to these packages ensured that
consequences weren’t as devastating as they
could’ve been. However, one can imagine the
vast financial losses and number of affected
people if these vulnerabilities would’ve been
successfully exploited. Similarly, many
businesses use common libraries and
applications that can have unidentified — or
worse, unreported — vulnerabilities.
Organisations may also have other reasons for
resisting collaboration. For one, they might
want to retain their proprietary intel and keep
it exclusively to themselves. They may believe
that retaining the data helps them maintain a
competitive edge over their market rivals.
Apart from that, organisations may not have
any incentive for collaboration in cyber
security.
To change this, transparency in cyber security
must be promoted by entities that are above
the board, such as the policymakers and the
regulators. These entities can take steps to
incentivise the sharing of intelligence
gathered on new threats, as they not only
have the power to do so, but also the
responsibility to ensure the wellbeing of the
entities they govern.
The good news is that such actions are
already being taken, albeit in very few places.
In a recent example, American President Joe
Biden called for more collaboration and
cooperation to improve cybersecurity in the
US. To ensure the same, the Securities and
Exchange Commission (SEC) proposed a rule
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved
by Jay HIRA
change that made it mandatory for public
companies to standardise the practice of
disclosing information and periodically
providing reports regarding cyber security
threats, risk management, strategies, and
governance details to other businesses,
governments, and stakeholders. This came
after the President passed an executive order
last year, which included the adoption of Zero
Trust Architecture (ZTA), among other steps to
fortify the country’s cyber security.
Moreover, Congress has also passed the
Cyber Incident Reporting for Critical
Infrastructure Act, which made it mandatory
for businesses to notify the Cybersecurity and
Infrastructure Security Agency (CISA) within
72 hours of any significant data security
attacks or other kinds of hostile cyber
incidents. Similarly, the Reserve Bank of India
(RBI), has also issued guidelines to banks,
requiring them to report cyber security
incidents immediately. Policies and actions like
these can act as a precedent for governments
worldwide.
In addition to such legislative action, there
also needs to be an attitude shift within the
business community when it comes to
cybersecurity. Businesses need to realise that
an organisation’s cyber security posture is just
as important as its financial performance, as
Equifax’s CISO Jamil Farshchi aptly puts it: “If
you’re a customer or an investor, it shouldn’t
take a breach for you to find out a given
company’s security posture. Companies
should be required to make public the health
of their own cyber security.”
As we learned from the post-WWII experience,
the increasing interdependence of our
ecosystems promises unprecedented growth
but also brings with it unprecedented and far-
reaching risks. To mitigate these risks and
benefit from the opportunities, we can take a
page from history and adopt a more
collaborative approach to solving this
complex cyber security puzzle.
29
Jay HIRA , Sydne y, Aus tr alia
Jay HIRA is a Cyber Security Strategy and Transformation Director with over 15 years of international
experience supporting financial services organisations to become more cyber resilient through the
adoption of Zero Trust principles to build trust and attract more customers, enabling growth.

He is experienced at developing efficient and business-aligned cyber resilience strategies that

transform businesses, foster customer trust, and enhance revenue security and net promoter score.

He has a proven track record of partnering with stakeholders across the organisation, including the
Board and CxO, of successfully influencing change and delivering cyber-resilience capabilities aligned
with IT strategy and broader business objectives.

Jay advocates for diversity and collaboration in cyber security and is best known for building high -
performance teams and creating an inclusive culture that empowers individuals and promotes
equality, well-being and fairness.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 30

Understanding Ethical Hacking

So, I agree with Constantine and Karg.

However (I hope that you were expecting a
big ‘however’), my understanding of the
spirit of the White Hat community to ‘Ethical
Hacking’ is: ‘better the devil you know than
the devil you don’t know, worse yet the devil
or devils you may never know to exist.’
This is a relationship definition versus a
morality definition. Computers are good
when it comes to relationships – when it
comes to morality – not so good.
Furthermore, the context within which we
need now consider Cyber security is one of
relentless expansion of data acquisition-
transformation-presentation capacity.
Increasing orders of exponentiation with the
fractal of this manifested chaos being none
other than a machine: the computer.
And both the good and bad thing about a
computer is that it does what it is instructed
to do and, unfortunately, is limited by
Humanity not yet knowing how to instruct a
computer to do morality. With this spirit and
within this context, the White Hat
community’s relentless pursuit of its passion
must be revealed through a more appropriate
lens.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 31

 >>
Rather than ‘Ethical Hacking’, I propose a
substitute more in line with the use of the
Human biology as the analogy for the U.S.
DHS – Department of Homeland Security
Cybersecurity ecosystem description in its
publication: Enabling Distributed Security in
Cyberspace - Building a Healthy and
Resilient Cyber Ecosystem with Automated
Collective Action March 23, 2011 (see:
https://www.dhs.gov/xlibrary/assets/nppd-
cyber-ecosystem-white-paper-03-23-
2011.pdf).
It should come as no surprise that Human
biology serves as the DHS Healthy and
Resilient Cyber Ecosystem analogy since we
know Human biology as good or better than
any other and the purpose toward which
Humanity directs machines (e.g. computers)
is to perform work for and on behalf of
Humans.
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved
Interview with Stewart A. Skomra
Staying with the Human biology analogy,
“Ethical Hacking” is to “the devil you know
versus the devil you don’t” as physical
exercise and inoculation are to the Human
condition.
Both muscular-skeletal strength training (i.e.,
physical exercise) and immunology work the
same way. Both weaken the Human; one
through Self-induced stress and the other to
environment-induced stress. Yes, one can
argue that Self and environment are one-
and-the-same.
The Human must become diseased (i.e., not
at ease) for the Human autoimmune system
to build up resistance against the source of
disease. Over time, the Human is no longer
made weak from each respective stressor
Self-induced or otherwise. In the DHS
paper’s Human biology example, the Human
immune system is the analogy for a
proscribed Cyber Security ACOA – Automated
Courses of Action.
For this article and “Ethical Hacking”, being
consistent with the DHS paper’s Human
biology analogy, my preference is to treat the
first word as simply an adverb with a
synonym of Proactive (which is a good
thing) and the second as a verb being
replaced by a synonymous expression:
Automated Courses of Action Proactive
Exposure (“ACOAPE”); a pitiful acronym.
The foundation of ACOAPE is Privacy,
Security, and Trust. We can visit “Security”
and “Trust” at another time. For the Ethical
Hacker context, we need only discuss
Privacy.
32
 >>
Given that:
1. Humans choose to interact with one
another through an exchange of thought that
is inventoried in the written word, Privacy is
anathema. In other words, Privacy and
Society are somewhat mutually exclusive.
2. Where individuals within a Society are
wanting to force their selves into a selective-
group dialog without the permission of the
existing members of the group - this would
be considered an invasion of a group’s
Privacy.
➢ The Black Hat hacker falls into this
category.
3. Where this same selective group agrees
that their shared thoughts should be
monitored by a non-member of the selective
group to keep out non-members, this would
be considered the protection of a group’s
Privacy.
➢ This ‘non-member group monitor’ fulfills
the ACOAPE role and is commonly referred
to as a White Hat hacker.
It follows that:
ACOAPE (a.k.a. “Ethical Hacking”)
essential to a Cyber Secure Society.
We are on the cusp of an accelerating plunge
in the Human-to-computer ratio beyond a
point where hundreds and thousands of
computers operate in service to each
Human. These machines (i.e., computers)
must be able to create and take care of one
another so that they can automatically
organize to serve the Human in a manner
like the Human immune system. Thus, the
essential need for ACOAPE (a.k.a. “Ethical
Hacking”).
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved
Interview with Stewart A. Skomra
Stewart A. SKOMRA is the Founder and CXO of
AIMAGO Limited Company (“AIMAGO”).
AIMAGO is his final startup and will culminate a
mission pursuing the automation of automating
spanning five decades. AIMAGO owns the
essential intellectual property (“IP”) of
Stewart’s mission and, as a matter of course,
will indefinitely create intellectual property.
At present, Stewart fulfils leadership roles in
Dogevity Pet Products LLC, SocioTechonomic
LLC, METEORA SYTEM U.S.A. Ltd., FracTess
Limited Company, KTON LLC, and Baby Shark
Limited Company.
is For nearly forty years, Stewart has driven New
Product and New Market Development ranging
from Computer-Aided Design & Computer-
Aided Manufacturing, through Machine-to-
Machine/IoT – Internet-of-Things, Supply-Chain
Management, Auto-ID, Wireless Technologies,
to Secure Identity & Secure Device
Management. From Blue-Chips including
IBM, Intel, Qualcomm, and Trimble Navigation
through multiple startups, he has led
development initiatives serving industries
including manufacturing, construction,
distribution, transportation & logistics,
wholesale & retail, consumer packaged goods,
along with finance, insurance, healthcare, as
well as energy.
33
 Why you shouldn’t follow me

by Craig FORD

I have been around in the IT and cyber trenches for so long now I feel like I am almost part of
the furniture, I started out way back in the early 2000s (just after the whole Y2K bug craziness –
that was a weird time). I have worked in many different roles from PC builder, IT support,
systems admin, security engineer, SOC manager, security manager, Pentester and almost every
job in between. I have written almost eight books now with five of those in the pipeline for
publishing and I currently write for several cyber security publications.

I have a couple of industry certifications and I have a couple of master's degrees (I know, it’s
weird that I have more than one). I am even the Queensland Chair for the Australian Information
Security Association, all in all, I feel I have done pretty well in my career and I am far from
done. I have a lot more to do and a lot more to contribute over the next 20 years or more in this
industry. Yes, that means you will need to get used to seeing my books and articles over the
years, I love writing and will be continuing to contribute my thoughts and ideas for as long as I
feel they are relevant.

To many of you just starting out in the industry, it is tough, I know, I have been there. I have
done that transition into cyber myself, I know at times you will want to give up but don’t, it
really is worth it. That’s not what I want to talk about though, I want to talk about you, not me,
not how I got into the industry. Not what amazing shortcut, I took (There are no shortcuts just
FYI), not what certifications you should or shouldn’t do. Mostly you should ignore what most
people in our industry tell you to do when they give advice on how you can break into the
industry. Seriously ignore everything they or I have to say. It doesn’t matter what any of us say
(Maybe you should listen to some of the advice, some great people are doing great things,
sharing great advice but that would ruin the point I am trying to get across), that’s right, don’t
listen to anything I say that has worked for me, what I valued, what I think helped me get into
the industry.

The only person's voice you need to focus on is you. YOU need to figure out what you want,
YOU need to take a deep look inside, figure out what makes you tick, what makes you learn best
and what will help YOU to get to where you need to be. If you have a passion for Pentesting or
risk and compliance you go out there and get your chance. Figure out what stage in the journey
you are on, figure out for you what you need to do to be at the level you want to be at to be a
success in your own mind (forget my success, forget jimmy bob’s success) own your end goal
and map out in small manageable steps on how the hell you are going to achieve it.

If that’s some certifications, then great get it done. If that’s some degrees, awesome, go get
them. We are all different and that’s a good thing. All of us need to find our own success, you
can take some of the things I do or have done, I am happy if my journey can help you along
with yours, I am even happy to discuss my path with you but throw out what isn’t right for you
and just do you. You are the one who needs to walk your path and you are the one who needs
to feel fulfilled with what you have achieved.

So, ignore what I have to say and go achieve YOUR goals. You are still here, you're still reading,
I thought I told you to stop listening to me, to just do what you need to do. Go on, go do you.

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 34

 FORESIGHT

A HACKER I AM

CRAIG
FORD

A HACKER I AM VOL.2
Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 35
Craig FORD, Brisbane, Aus tr alia
Craig FORD, is a wizard of the dark arts, a conjurer of the cyber world, he delves into ethical hacking,
security engineering and user awareness. He is not one of those hackers who hides in the dark,
hunched over his keyboard wearing gloves just doing his thing. No, Craig stands tall in the light, no
hoodies here (Unless its really cold then he might just buckle on that stance).
He is a wielder of words, with works talking about all things cyber for CSO online, Women in Security
magazine, Cyber Australia magazine and so many more we don’t have the space to mention. He has
written some books (A Hacker I Am Series) that will pull you down the cyber security rabbit hole and
leave you wanting so much more. He has a new hacker novel series dropping in 2022 (keep a watch
out for this).
Unlike many hackers, he isn’t too hard to find, look him up, you will not need to search long. When
you do find him, you can find all the usual acronyms and what not. He is a defender of cyber space,
here to stand with you on the war that is coming between good (your friendly neighbourhood hacker,
cyber professionals and what not) and evil (Malicious actors, cyber thugs, criminals). What side are
you on?

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 36

TOP CYBER NEWS
MAGAZINE
BRING TECHNOLOGY TO THE FRONT OF THE BUSINESS
Human Centered Communication Of
Technology, Innovation, and Cybersecurity

«Outstanding publication and thanks for sharing!»

Rick BLUE, Global Director, Strategic Partnerships (CCSK) at Cloud Security Alliance

«Such a great work, Ludmila Morozova-Buss and great tribute

to infosec professionals!»
Céline PEREIRA, Cyber Security Delivery Manager at NTT DATA Europe and LatAm –
Lisbon, Portugal

«Dear Ludmila, your activity is proved to be beyond and above

anyone's expectation.»
Daniel EHRENREICH, ICS-OT-IIoT Cyber Security Consulting & Educating
Workshops at SCCE - Secure Communications & Control Experts

«Ludmila Morozova-Buss, you always outdo yourself. Every

publication really and truly is a museum piece! Well done! All key
topics representing the times.»
Edward MILLINGTON, (BSc, CISSP, ISSA, MCIIS, MIET, PAN-ACE) is the Founder
and Managing Director of CariSec Global Inc

«Great insights and thought provoking reads Ludmila Morozova-

Buss! In a world where uncertainty and digital disruption continue
to prevail, co-creating a new cyber world is indeed an opportunity
to be embraced by a diverse eco system of stakeholders. Thank
you for bringing these together as part of the source!»
Nadja El FERTASI, Founder and CEO at Thrive with EQ

Top Cyber News MAGAZINE - June 2022 - All Rights Reserved 37

TOP CYBER NEWS
MAGAZINE
Human Centered Communication Of Technology, Innovation, and Cybersecurity

A B O U T P EO P L E, BY P EO P L E, FO R P EO P L E !

Ludmila Morozova-Buss
Doctoral Student at
Capitol Technology University

Editor-In-Chief