danny-pickens

Danny Pickens

Senior Director, Global Threat Intelligence Center

Danny Pickens has more than 17 years of experience in the fields of military intelligence, counter-terrorism and cyber security. As the senior director of threat management operations within Optiv’s managed security services (MSS) practice, Mr. Pickens is responsible for the direction and operations of a staff of more than 40 security professionals, providing threat intelligence, threat analysis, malware analysis and security awareness training to Optiv’s MSS clients.

 

The Necessity of Enemy Perspectives: The Enemy Gets a Vote

· By Danny Pickens ·

The enemy gets a vote. The current Secretary of Defense and retired Marine Corps General James Mattis is fond of this observation. However, in many areas, and especially in cyber security, it rings true. The enemy does get a vote. Good network hygiene, and ensuring that you have the latest technology only goes so far. What is necessary, is opening up the view of the cyber security staff to the enemy’s perspective and gaining an understanding of their capabilities.

Continue reading

Operationalizing a Cyber Threat Intelligence Solution

· By Danny Pickens ·

Cyber threat intelligence is a process required to make action-oriented, judgement-based decisions that are not otherwise possible. Optiv recommends considering four essential attributes of threat agents mapped back to a security posture, as well as six essentials courses of action, known as threat modeling, in order to properly produce, consume and act upon cyber threat intelligence.

Continue reading

Using MICE to Understand Your Adversary

· By gTIC, Danny Pickens ·

There are many different reasons why malicious actors would attack your network and assets; some for monetary gain and others just for fun. Intelligence officers use the acronym “MICE” to determine what would push a potential source of intelligence information over to providing such information to a U.S. intelligence official (Crumpton, 2012).

Continue reading

Five Things to Consider for a Successful Intelligence Team - Part 5

· By gTIC, Danny Pickens ·

The previous four parts in this series have covered subjects necessary to make an intelligence staff a successful endeavor for an enterprise. In this final piece, I want to concentrate on how to pull it all together and make the team operational. As stated in Part 1: Invest in the Proper People and Tools, “Threat intelligence in our industry is evolving.

Continue reading

Five Things to Consider for a Successful Intelligence Team - Part 4

· By gTIC, Danny Pickens ·

In Part 3, “Allow for Open Communication,” I talked about the need for open communication to and from the intelligence team. For this edition, I am going to go further into the necessity of communication, but from a sharing perspective; yes, even outside of your own organization. For many, the thought of giving up information surrounding detected and even successful attacks to others in the same industry, competitors included, sends up red flags.

Continue reading

Five Things to Consider for a Successful Intelligence Team - Part 3

· By gTIC, Danny Pickens ·

Part 1 and Part 2 of this series concentrated on people, tools and encouraging DEVOPS. All of these are great considerations when building or beginning intelligence operations to support information security programs. They go a long way in establishing and providing support to Security Operations Centers, or security operations in any form, but to take it a step further an organization should allow for open communication of the intelligence staff.

Continue reading

Five Things to Consider for a Successful Intelligence Team - Part 2

· By gTIC, Danny Pickens ·

In Part 1 of this series, I covered the need to invest in the proper people and tools for the intelligence team. This consisted of identifying those with the necessary skills and understanding of intelligence methodologies, while also looking at some necessary tools for the collection, storage and analysis of intelligence information. In this edition, I will go a little further into tools, but from a development standpoint also known as Development Operations (DEVOPS).

Continue reading

Five Things to Consider for a Successful Intelligence Team - Part 1

· By gTIC, Danny Pickens ·

I’ve had the opportunity to travel a bit and “evangelize” about Intelligence - what it is and the basic methodology surrounding it. The “Take Away” portion covers five areas of consideration for organizations wanting to set up their own intelligence shop and be successful. I will be breaking these down in more detail over the course of this five part series.

Continue reading

News Brief - OpenSSL "Heartbleed" Bug

· By Danny Pickens ·

The "Heartbleed" bug disclosed on April 7 had serious implications for businesses and consumers alike. Senior Research Analyst Danny Pickens gives us a rundown of the vulnerability and how to minimize its impact.

Continue reading
(9 Results)