Last weekend, I was at a small conference and one of the people whose presentations I attended was an FBI special agent named John B. Chesson.
After he got through the obligatory introductory material about what the FBI does, what the challenges are, and how computer security at typical companies is done (or, in too many cases, not done) his presentation turned to a proposal for a particular new methodology for helping companies achieve some degree of security. That methodology is called CITAS – which stands for Computer Intrusion Threat Assessment System.
more here..........http://dillingers.com/blog/2014/11/24/citas-threat-assessment-system/
After he got through the obligatory introductory material about what the FBI does, what the challenges are, and how computer security at typical companies is done (or, in too many cases, not done) his presentation turned to a proposal for a particular new methodology for helping companies achieve some degree of security. That methodology is called CITAS – which stands for Computer Intrusion Threat Assessment System.
more here..........http://dillingers.com/blog/2014/11/24/citas-threat-assessment-system/