A VIRTUAL COMMUNITY OF CYBERSECURITY PRACTICE
Founding, building, and nurturing a Cybersecurity Science for everyone. We are a one-stop-shop for learning from—and contributing to—the latest findings and new scientific thinking emerging from the computer security community.
We extend a warm welcome to you, and an open invitation to get involved; no matter what your expertise level; and do contribute ideas, thoughts and experiences for the benefit of all.
SCIENCE OF CYBERSECURITY FRAMEWORK
In order to establish a logically coherent statement of basic theory, and to enable orderly progression of the same; we hereby define the Science Of Cybersecurity Framework (SCF).
Whereby, the SCF comprises all of the fundamental Cybersecurity axioms, principles, concepts, events and processes etc. The upshot is a complete characterisation of the entire subject matter of Information Security.
The purpose of the SCF is not to list, in an exhaustive fashion, every possible instance of a Cybersecurity failure/vulnerability and/or protective measure; but rather to define all of the logical elements that could possibly comprise the same. In other words, the SCF seeks to identify all of the universals of Cybersecurity, in the belief that any particulars will naturally follow.
WE NEED YOU!
Obviously development of a new science—is not the job of one person alone; but rather science can only arise, evolve and progress through consensus; and by the power of multiple brains.
Consequently, we invite members of the Cybersecurity community to get involved and contribute to this effort.
Ways for you to contribute:
- Amend SCF Theory;
- Qualify SCF Axioms
- Revise SCF Lexicon
- Supply Commentary
- Certify / Cross-Reference
- Identify Threat-Classes
- Evolve Countermeasures
- Submit an Article;
- Join PartnerGlobal;
Chip in here: alan[dot]radley[at]gmail[dot]com
ARTICLES
INTERVIEWS
- Professor John Walker, CSIRT/SOC/Cyber Threat Intelligence Specialist & Insecurity Professional., Apress. University of Westminster, London, UK.
- Colonel (Retd) John Doody, FBCS FCMI CITP IISP MIOD, Director, Interlocutor Services Limited, Worcestershire, UK.
- Eugene Panferov, An Independent Thinker.
- Tony Collings OBE, Chairman and Managing Director of the ECA Group.
- Michael Lester Chief Information Security Officer, Magenic.
- Weizhong Gong Chief Security Architect, Fujitsu.
- Angus MacLeod CISM.
- Bob Man, BM Cybersecurity.
- Paul Simmonds, CEO at The Global Identity Foundation.
- Sergiu Mesesan, Chief Information Security Officer and co-founder of Open Data Security.
- Dave Whitelegg, Founder And Author Of The It Security Blog.
- Francisco J. Cesteros, ICIA Engineer and Investigator.
- Larry Cole, Cybersecurity Pratictioner.
- Yonadav Perry, Fellow at Yuval Ne’eman Workshop for Science, Technology and Security.
- Steve King, COO, CTO, Netswitch Technology Management.
- Marcelo Mansur, Founder & CEO at RedBlue Security.
- Harris Schwartz, Executive Security Advisor.
- Nihad Hassan, Cyber Security Professional.
- Ami (R.) Elazari, President CEO Millennium Electric Enterpreneur Inventor.
- Dane Warren, Head Of IT Security, Group IT.
- Eyal Estrin, CISSP, CISM, CISA, RHCE, CCSK, Security+, MCSE:Security.
- Mayur Agnihotri, AppSec India Co-Leader, Member Executive Council @CIS_Defender.
- Tim Burnett, Senior Cyber Security Adviser and Public Speaker, Atos.
TOPICS
BOOK SERIES
The Science of Cybersecurity – by Alan Radley (2017). Free digital edition is here, and the printed edition is on Amazon here.
Sample Reviews
Excellent read! Succinct and accurate on a subject that normally wanders into tangential discussions confusing and diffusing the goal… Radley breaks down today’s hottest topic in a way that provides reference to students as well as guidance to the more learned… I found it spot on and a fine addition to the body of work on cyber-security but specifically to the discussion of privacy within communications… I see this as a reference document for students studying cyber security as well as an excellent read for CTOs, CSOs, CISOs, and CEOs laboring over how to analyze their needs for increased security… allows you to hit the highlights or dive deeper into the subject with your many charts, diagrams, and glossary of terms.
Vic Hyder – Chief Strategy Officer at Silent Circle. Commander, U.S. Navy (SEAL), retired.
Will no doubt be recognized as one of the seminal works on security, establishing definitions and clarity where others have dealt with assumptions… it is not very often that one is exposed to a work that is truly ground breaking in a field, but this is one of those works. Rather than expounding on the implementation of security as many do, Dr. Alan Radley astutely asks (and then suggests an answer for) the rather naive, yet deceptively complex question “What is security?”, or more precisely “How does one characterize a communication system for secure data transfer?” As Dr. Radley examines this question, the reader becomes aware that the answer is much more elusive than one first assumes.
As Dr. Radley builds a working compendium of definitions needed to examine the issue, the reader becomes more and more aware that the current vernacular is insufficient for discussing secure communication at a philosophical level, and if we cannot agree on what it means to be secure or private in thought, how can we accomplish it in act? It is here, laying the foundation of formal definition of socially secure communication, that Dr. Radley’s work is groundbreaking and will no doubt be referenced by many works to come.
Michael Lester – MSEE, MBA, CIPP/US, CISM. Chief Information Security-Officer/ Vice President, Magenic.
As cyber education evolves to meet the pace of change in our digital world so does the need for good reference books.. a timely and spot on publication that I shall be recommending to my students; well done Dr Radley.
Professor Richard Benham – National Cyber Skills Centre, UK.
An excellent read and would definitely recommend this to our AISA members as a way to get a different perspective on security.
Arno Brok (21/3/2016) – Chief Information Security Officer – Australian Information Security Association.
In a world full of privacy breaches, Radley timely develops a framework that delves into complexity of technical and human-centric factors that affect our perception of privacy and cybersecurity. I recommend this book to everyone who is interested in making our cyber world more secure.
Vitali Kremez (6/2/2016) – CyberCrime Investigative Analyst.
The book provides the reader with an accurate and objective view of the life-cycle of the exposures and vulnerabilities which are associated with the technological shadow cast over all individuals, and organisations. This is a unique piece of work… an excellent read, and deserves a place on every security professional’s bookshelf who is seeking a balanced and objective view of the current, and futuristic Cyber Security Landscape.
Professor John Walker – Nottingham Trent University.
Alan Radley makes sense of the complexities which ordinarily restrict this topic to IT people only… required reading for anyone focused on secure and private communication… What’s more, Alan’s no-nonsense approach and fearless honesty, is refreshing. I recommend this to those interested in making certain that their communication is more private, secure and resilient.
Bill Montgomery – CEO – Connect In Private.
A brilliant book! Did it make me wiser? Yes…
Pantazis Kourtis – Member of the Board of Directors at London Chapter at ISACA.
I commend this book to a wide readership. Well done Sir, more please.
Tony Collings OBE -Chairman – The ECA Group.
A very concise body of work, that belies its length for the practical application of useful data in a highly complex area… should be required reading for anyone providing third party services whereby their security claims cannot be held up without transparency. Ignore this work at your peril.
Christian Rogan – Vice President, Royal Holloway Enterprise Centre.
I highly recommend this book for individuals interested in understanding the challenges facing the security and information assurance specialist. Dr. Radley’s direct approach provides an excellent read and can enable valuable insights into an extremely complex topic such as security.
Dr Merrick S. Watchorn – DMIST – Chief Cyber Security Analysis (Cloud SME), Science Applications International Corporation (SAIC – [Technology Arm of NSA]), Virginia, USA.
Dark Reading – With their mission to challenge the way people think about cybersecurity, Dark Reading has formed an interactive community of readers who are passionate and unafraid of confronting controversial topics.
SecurityWeek – Subscribe to receive weekly updates on current events, industry insights, and experts’ takes on cybersecurity. Get the latest on threats, security trends and developing technology.
CIO Magazine – CIO Magazine illuminates ways that information technology can help businesses achieve their goals. By analyzing IT trends and creating insightful content, they’ve been helping CIO’s and other IT professionals find the information they need to move their businesses forward in an ever-changing threat landscape.
Network World – Replete with news, opinions, industry analytics, and more, Network World is devoted to offering up vital tools to assist the IT professionals who are tasked with making the tough decisions for their organizations.
TechCrunch –What started as a personal blog back in 2005, TechCrunch has gained a huge following and continues to help IT professionals share information. With a broad focus on startups, gadgets, and tech updates, cybersecurity is a common thread that weaves its way through TechCrunch’s repertoire of content.
VentureBeat – More than just content, VentureBeat intends to provide security professionals with deep insight into the context of industry developments. Aiming to “inform, connect, and inspire” techies from all walks of life through research, news and events, VB sets out to broaden their audience’s perspective with every read.
Computerworld – While technology has undeniably become the driving force behind modern business development, ComputerWorld assists readers as they strive to harness the power of tech to develop competitive business strategies.
eWeek – Dating back to the 1980s -the era of mainframes – and still going strong in today’s age of cloud computing, eWeek has long been a dependable voice for IT admins to turn to. With an unwavering finger on the ever-evolving pulse of the tech industry, eWeek continually adjusts the scope of their reporting to fit the needs of industry leaders.
InfoWorld – Dedicated to spotting trends early, InfoWorld provides detailed analyses, opinion pieces, product reviews, industry news and more, from an exclusive network of expert journalists.
IT Business Edge – IT Business Edge focuses on topics from IT management, security and cloud computing to social media, enterprise apps and the internet of things. This is the publication to turn to for a hodgepodge of articles sure to give you the overall industry scoop.
CSO – Security is the umbrella under which all of CSO’s content falls. With news and analytic reports founded in solid research, here you can dive into their world of information security, business development, identity and access management, and risk prevention.
CRN – Primarily targeting value-added resellers and technology integrators, CRN serves up a unique concoction of cybersecurity news and developments across industries. Come for the wide variety of tech tidbits, and stay for the fine-tuned focus on today’s leading tech companies.
SearchSecurity – What are the latest viruses or hacker threats out there? How can organizations adapt to further secure their data? SearchSecurity sets out to answer all these questions and more in order to ensure success for IT professionals.
Infosecurity Magazine – Over ten years worth of award-winning content – including industry updates, opinion columns, and a variety of free educational content – makes this publication a great resource for info on the latest tech trends.
Talkin’ Cloud – With news, commentary, industry research, and more, Talkin’ Cloud is here to help provide guidance to cloud resellers, builders, and service providers alike. Turn to them for a wide range of topics related to security, privacy and business strategies.
MSPmentor – Want a comprehensive catalog of content focusing on the vast cross section of tech info linking cloud computing to the managed services field? You’ve come to the right place.
Computer Weekly – Dating back to 1966, when it became the first ever weekly IT newspaper, Computer Weekly now offers digital content to a remarkable community of readers interested in the latest issues and trends in today’s world of information technology.
IT Security Guru – There’s a ton of IT Security news out there these days, and it can be hard to sort through and find the best information. IT Security Guru’s goal is to compile all the latest and greatest breaking news each day so that you don’t have to.
Help Net Security – Help Net Security is a trusted source for tech and information security news, insight into industry trends, product reviews, events and more. Their goal is to keep you up to date on potential security risks.