Blog Homepage

Why Your Organization Needs an Incident Response Plan

Why Your Organization Needs An Incident Response Plan

2022-12-02T19:20:24+00:00

Did you know that the GuardSight team publishes a free and open-source Incident Response Plan (IRP)? Here's what it is all about: Many organizations GuardSight gets called into to help with Incident Response (IR) or Cybersecurity Operations (SECOPS) do not have a formal IRP. Fundamental elements such as roles, taxonomies, severity ratings, tactics, techniques & procedures, log retention, evidence collection and chain of custody, after-action reports, contracts with 3rd party service providers, law enforcement connections, ... Read More

Why Your Organization Needs An Incident Response Plan2022-12-02T19:20:24+00:00
Why military Veterans make outstanding teammates

Why Military Veterans Make Outstanding Teammates

2022-11-08T21:22:53+00:00

Did you know that approximately twenty-five percent of GuardSight's workforce are United States Veterans? Here's why Veterans make outstanding teammates: Veterans come pre-baked with discipline and a strong work ethic. They embrace duty, responsibility, accountability, and performance requirements for completing mission objectives. Veterans understand the value of teamwork, cooperation, and collaboration. Many of our Veterans have a formal education and certifications in various strategic and tactical disciplines, giving them the skills to articulate and apply ... Read More

Why Military Veterans Make Outstanding Teammates2022-11-08T21:22:53+00:00
Prioritization and Grouping COA

Level Up COA Assignments with Prioritization and Grouping

2022-10-25T16:31:55+00:00

Super awesome job! You have your team in a left-of-bang mindset related to cybersecurity, including implementing proactive security measures and monitoring threats as a steady state of cyber readiness. You also conduct Tabletop Exercises (TTX) that include a live-fire cyber range experience for the tactical team members. The practitioners on your team are disciplined and prepared. Then - BANG - an asset your team did not have on their radar (unaware of its existence) is compromised, providing the ... Read More

Level Up COA Assignments with Prioritization and Grouping2022-10-25T16:31:55+00:00
How Virtual Rally Points Help Teams Gain Clarity

How Virtual Rally Points Help Teams Gain ‘Clarity’

2022-10-11T23:38:49+00:00

Did you know that GuardSight has an internal voluntary virtual rally point known as Clarity that takes place weekly to encourage ideation, participation, knowledge sharing, and learning? Here's what it's all about: Clarity is a weekly sixty-minute virtual assembly of GuardSight employees where aggressive curiosity flourishes. Any teammate can present on any topic. Most of the presentations are cybersecurity-related, but topics are not restricted to cyber. Presentations have been made on various topics, including the history of ... Read More

How Virtual Rally Points Help Teams Gain ‘Clarity’2022-10-11T23:38:49+00:00
GuardSight Work Instructions

How to Mitigate Elevated Op-Tempos with Work Instructions

2022-09-29T04:38:14+00:00

Did you know that the GuardSight Cybersecurity Teams (SECOPS/SPECOPS) develop and use Work Instructions to create and maintain a system of operational excellence? Here's what it's all about: Consistency, speed, precision, and transition are vital factors for effective Cybersecurity operations. Risks of defects to tactics, techniques, and procedures brought on by continually elevated op-tempos can be mitigated by documented instructions and training. Instructions provide teams with everything from maintaining cyberweaponry to performing analysis, dissecting malware, and preparing customer briefings. ... Read More

How to Mitigate Elevated Op-Tempos with Work Instructions2022-09-29T04:38:14+00:00
CSIRT GuardSight Quick Reaction Force Incident Response

Rewire for Speed and Embed Long-Term DNA – Tabletop Exercises (TTX)

2022-09-15T00:57:23+00:00

Awesome Job! You adopted a cybersecurity mindset as part of your corporate culture. You deployed sophisticated cyber weaponry/tools to combat the cyber adversary. You employed an adequate level of competent internal cybersecurity staff. You hired a SECOPS threat detection and response company, like GuardSight, to engage the cyber enemy continuously. You implemented best practices like the principles of least privilege and layered defense. The above items are essential when readying your cybersecurity posture left ... Read More

Rewire for Speed and Embed Long-Term DNA – Tabletop Exercises (TTX)2022-09-15T00:57:23+00:00
Fatigue Management Techniques

Four Fatigue Management Techniques Every SECOPS Team Should Use

2022-09-12T23:29:08+00:00

Did you know that GuardSight Cybersecurity Operations (SECOPS) Teams apply several Fatigue Management techniques to reduce the cognitive overload rendered by the steady operational tempo of battling the cyber enemy? Here's what it's all about: Speed and precision are critical factors for reducing the dwell time of a cyber attack. Dwell time is the time between the moment a threat actor successfully compromises assets, living undetected, and when they are discovered, contained, and entirely eradicated ... Read More

Four Fatigue Management Techniques Every SECOPS Team Should Use2022-09-12T23:29:08+00:00
Objectives and Key Results (OKR) framework

Why SECOPS & SPECOPS Units Use An OKR Framework

2022-08-30T00:07:07+00:00

Did you know that the GuardSight Cybersecurity Services delivery teams are organized into Security Operations (SECOPS) and Special Operations (SPECOPS) units and use an Objectives and Key Results (OKR) framework to achieve their strategic Mission Objectives? Here's how it works: GuardSight SECOPS teams are primarily responsible for handling day-to-day cyber hygiene activities and making daily contact with the cyber enemy. These teams are squads of less than fifteen members and are classified as Team-1, Team-3, Team-n, ... Read More

Why SECOPS & SPECOPS Units Use An OKR Framework2022-08-30T00:07:07+00:00
Cybereason GuardSight Joint Solution Brief

Cybereason and GuardSight Joint Solution Brief

2022-08-17T01:53:59+00:00

MANAGED SECURITY OPERATIONS AND INCIDENT RESPONSE (IR) FOR ANY SIZE ORGANIZATION CYBEREASON AND GUARDSIGHT As workspaces continue to evolve, organizations are faced with the challenge of building, managing, and maintaining a security solution that will stand up against today’s advanced attacks. Organizations, however, are not the only ones evolving. Adversaries are constantly developing new tactics, techniques and procedures (TTPs) designed specifically to infiltrate a network and carry out an attack. Maintaining a ... Read More

Cybereason and GuardSight Joint Solution Brief2022-08-17T01:53:59+00:00
GuardSight SOC 2 TYPE 2 Certification

GuardSight Achieves SOC 2 Type 2 Certification

2022-08-17T01:51:11+00:00

SOC stands for Service Organization Control. The SOC 1 report is for financial information like credit card numbers, while the SOC 2 report is for non-financial information. The certification process involves an audit by a third-party to verify that a company is meeting SOC guidelines. SOC 2 security principles focus on preventing the unauthorized use of assets and data handled by the organization. This principle requires organizations to implement access controls to prevent malicious ... Read More

GuardSight Achieves SOC 2 Type 2 Certification2022-08-17T01:51:11+00:00
Go to Top