This week, we are proud to present part I of a two-part thought leadership paper on the OODA Loop and how it may be successfully applied to Cybersecurity. Cliff Kittle, a retired Marine Corps Captain knows a thing or two about war-time decision making, does a great job of simplifying the ideas behind OODA and why each component is important and must work with the others to be effective.
A brief excerpt:
“Perhaps the greatest value in executing the Observe phase of the OODA Loop can be found in the ability to perform “danger management.” Based on observation of the external operating environment and adversary Tactics, Techniques, Procedures (TTPS), a determination of the attack surface (i.e., data, applications, assets, services) where the greatest current danger might exist can be made. With this knowledge, the organization would be better prepared to orient the focus of its defensive effort. The current defense-in-depth philosophy often does not achieve such focus and, as a result, falls victim to the organizational situation, “Preparedness everywhere means lack everywhere.” In other words, a strategy that of preparing and reacting, no matter how comforting it may seem to the organization, contains inherent vulnerabilities.”
*Danger Management is a phrase John Kindervag created to identify that moment when, pre-risk, a threat situation is harvesting data elements that will assure a successful attack – Risk Management is the act of dealing with the probability of such an event.
“War will be reborn in another form and in another