In response to the recent ransomware attack on Colonial Pipeline, the Biden administration recently issued an Executive Order on “Improving the Nation’s Cybersecurity.” The document addresses a series of ongoing cybersecurity concerns both directly and indirectly brought to light by the Colonial Pipeline incident. …

SOC & Incident Response teams need a well-defined incident classification system in order to quickly & consistently respond to cyber events, however: Most SOC platforms only offer a pre-defined incident type hierarchy and a predefined list of categorizations, except at the most customized enterprise service levels Industry, regulatory, and thought…