Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Robin Ruefle
December 2014 - Technical Note Pattern-Based Design of Insider Threat Programs

Topics: Insider Threat

Authors: Andrew P. Moore, Matthew L. Collins, Dave Mundie, Robin Ruefle, David McIntire

In this report, the authors describe a pattern-based approach to designing insider threat programs that could provide a better defense against insider threats.

November 2014 - Conference Paper An Incident Management Ontology

Topics: Incident Management

Authors: Dave Mundie, Robin Ruefle, Audrey J. Dorofee, John McCloud, Samuel J. Perl, Matthew L. Collins

In this paper, the authors describe the shortcomings of the incident management meta-model and how an incident management ontology addresses those shortcomings.

May 2014 - Technical Note An Introduction to the Mission Risk Diagnostic for Incident Management Capabilities (MRD-IMC)

Topics: Incident Management, Cybersecurity Engineering

Authors: Christopher J. Alberts, Audrey J. Dorofee, Robin Ruefle, Mark Zajicek

The Mission Risk Diagnostic for Incident Management Capabilities revises the Incident Management Mission Diagnostic Method with updated and expanded drivers.

November 2013 - Webinar Components and Considerations in Building an Insider Threat Program

Topics: Insider Threat

Authors: Carly L. Huth, Robin Ruefle

In this November 2013 webinar, Carly Huth and Robin Ruefle discuss the key components you should consider when you're developing new insider threat programs.

August 2013 - White Paper The Role of Computer Security Incident Response Teams in the Software Development Life Cycle

Topics: Cybersecurity Engineering, Software Assurance

Authors: Robin Ruefle

In this paper, Robin Ruefle describes how an incident management can provide input to the software development process.

September 2012 - White Paper Building an Incident Management Body of Knowledge

Topics: Incident Management

Authors: Dave Mundie, Robin Ruefle

In this paper, the authors describe the components of the CERT Incident Management Body of Knowledge (CIMBOK) and how they were constructed.

September 2012 - Technical Note Competency Lifecycle Roadmap: Toward Performance Readiness

Topics: Incident Management

Authors: Sandra Behrens, Christopher J. Alberts, Robin Ruefle

In this report, the authors describe the Competency Lifecycle Roadmap (CLR), a preliminary roadmap for understanding and building workforce readiness.

March 2008 - Technical Report Incident Management Mission Diagnostic Method, Version 1.0

Topics: Incident Management

Authors: Audrey J. Dorofee, Georgia Killcrece, Robin Ruefle, Mark Zajicek

This report is superseded by the Mission Risk Diagnostic for Incident Management Capabilities, CMU/SEI-2014-TN-004.

April 2007 - Podcast The Real Secrets of Incident Management

Topics: Incident Management

Authors: Stephanie Losi, Georgia Killcrece, Robin Ruefle

In this podcast, participants explain that incident management is not just technical response, but a cross-enterprise effort.

April 2007 - Technical Report Incident Management Capability Metrics Version 0.1

Topics: Incident Management

Authors: Audrey J. Dorofee, Georgia Killcrece, Robin Ruefle, Mark Zajicek

In this report, the authors present metrics to provide a baseline or benchmark of incident management practices.

January 2007 - White Paper Defining Computer Security Incident Response Teams

Topics: Incident Management

Authors: Robin Ruefle

In this paper, Robin Ruefle describes the purpose and goals of a computer security incident response team (CSIRT).

October 2004 - Technical Report Defining Incident Management Processes for CSIRTs: A Work in Progress

Topics: Incident Management

Authors: Christopher J. Alberts, Audrey J. Dorofee, Georgia Killcrece, Robin Ruefle, Mark Zajicek

In this report, the authors present a prototype best practice model for performing incident management processes and functions.

December 2003 - Handbook Organizational Models for Computer Security Incident Response Teams (CSIRTs)

Topics: Incident Management

Authors: Georgia Killcrece, Klaus-Peter Kossakowski, Robin Ruefle, Mark Zajicek

This 2003 report describes different organizational models for implementing incident handling capabilities, including each model's advantages and disadvantages and the kinds of incident management services that best fit with it.

October 2003 - Technical Report State of the Practice of Computer Security Incident Response Teams (CSIRTs)

Topics: Incident Management

Authors: Georgia Killcrece, Klaus-Peter Kossakowski, Robin Ruefle, Mark Zajicek

In this 2003 report, the authors provide a study of the state of the practice of incident response, based on how CSIRTs around the world are operating.

April 2003 - Handbook Handbook for Computer Security Incident Response Teams (CSIRTs)

Topics: Incident Management

Authors: Moira West Brown, Don Stikvoort, Klaus-Peter Kossakowski, Georgia Killcrece, Robin Ruefle, Mark Zajicek

In this 2003 handbook, the authors describe different organizational models for implementing incident handling capabilities.