T3 published a new article by FCI about the Coalition of Cybersecurity Leaders launching the Open Cybersecurity Schema Framework (OCSF).
OCSF is an open-source project delivering an extensible framework for developing schemas, along with a vendor-agnostic core security schema. Vendors and other data producers can adopt and extend the schema for their specific domains, and data engineers can map differing schemas to help security teams use and understand the data they collect.
The Coalition of Cybersecurity Leaders — which includes Amazon Web Services, Splunk, IBM Security, Palo Alto Networks, and other industry leaders — launched OCSF to create a standardized, open framework that will facilitate effective data sharing and analysis across different security products and systems.
FCI covered this development as a significant step toward eliminating security data silos, enabling security tools to share data more effectively, and ultimately improving detection and response capabilities for financial services firms.
T3 Technology Tools for Today