Cyber attacks occur every day and are increasing at a rapid pace, in large part due to the multitude of network enabled devices.
Current cyber security providers focus on preventing the many attacks targeting these devices, which leads to an insurmountable number of attacks to address. As a means to reduce the ever increasing threat landscape, Sabre focuses on providing preventative measures and solutions to mitigate the outcomes of cyber attacks. We focus on the three outcomes identified by the popular Cyber Kill Chain: denying service to legitimate users, stealing private or confidential information, and causing erroneous actions based on faulty information.
Sabre cyber professionals possess a number of industry recognized certifications that speak to their level of expertise in executing cyber functions. Examples of the certifications they possess are as follows:
- CISSP (Certified Information Systems Security Professional)
- Certified Ethical Hacker (CEH)
- Certified Hacking Forensics Investigator (CHFI)
- Global Certified Intrusion Analyst (GCIA)
- Global Certified Incident Handler (GCIH)
- Information Assurance Vulnerability Management (IAVM)
- Certified Information Systems Auditor (CISA)
- Certified Computer Examiner (CCE)
- International Society of Forensic Computer Examiners
- GIAC Certified Firewall Analyst (GCFW)
Sabre Recognized for Cyber Readiness
In 2012, a Sabre Systems, Inc. team received the highest score given to any unit within the NAVY for the Cyber Command Readiness exercise. Sabre employees were involved in the NAWCAD Command Cyber Readiness Inspection and NAWCTSD Cyber Security Inspections teams in cooperation with the RDT&E labs in 4.0 and 5.0. Inspection (CCRI) and 97.6% at NAWCTSD Orlando for the Cyber Security Inspection (CSI) conducted by FLTCYBERCOM. Cyber security readiness rests on the foundation of traditional security readiness. That means maintaining an appropriate level of security in the key traditional security areas: Physical Security, Operational Security, Administrative Security, Procedural Controls, & Legal, Regulations, and Investigations Compliance. These teams received the 2012 NAWCAD Commander's Award primarily for their hard work and dedication.Read More
Sabre Employees Receive Patent for Multi-function Smart Communication Card
Sabre Hardware Development Engineer (Ghanshyam Dave) and Software Development Engineer (Todd Lutton) were part of a six man team that received a patent for the development of a Multi-Function Smart Communications Card. The patent covered various embodiments related to a smart card. The smart card enables multiple communication protocols that can be used to support several modes of user and system authentication. Improvements include power storage, data transport and authentication modes. The metadata spreadsheet is the single repository of important characteristics of the highest priority administrative records at the Census Bureau. This repository can be used on a project- by-project and dataset-by-dataset basis.Read More
Sabre Provides Thought Leadership in various Cyber Security forums
Sabre Systems, Inc. is actively engaged in a number of forums to provide thought leadership and advisement in the field of Cyber Security. As a recent example, at the International Test and Evaluation Association (ITEA) conference, Sabre Systems researchers were invited to present a novel method of using cyber deception to disrupt the cyber kill chain. Additionally, Sabre is an active member of the Cyber Security Advisory Board for the College of Southern Maryland. In this capacity, we provide advice on the development and offering of a cyber-security curriculum to educate cyber security professionals with a focus on meeting the requirements of the DoD. Last, but not least, Sabre was a key panelist on the business forum for Trans Atlantic Cyber security in which we discussed about the advantages of doing business with Europe and gain an understanding of key issues in cybersecurity that impact the European and US trade relationship. We developed a Data Acquisition Handbook that provides a more cost efficient and systematic method to ingest and process data for input into the Meta Data Relational Data Base (MRD), a repository of relevant, accessible, interpretative, and shareable Census Bureau data. Our customer, the Center for Administrative Records Research and Applications (CARRA) is using our SNAP Data Acquisition Handbook as a model for processing all administrative records data at the Census Bureau.Read More
SOME HIGHLIGHTS OF OUR WORK
Cyber Security RDT&E Laboratory
Sabre supported the Army Communications-Electronics Research, Development and Engineering Center (CERDEC) in the establishment of the C4ISR System Integration Lab segment (C-SIL) which conducts Laboratory Based Risk Reduction (LBRR) to support the evaluation of cyber security R&D tools and capabilities. Our support included the design of the initial tactical network architecture, preparation of the test plan for insider threat detection and prevention pilot, and development of test cases for future Cyber R&D capabilities.
Cyber Security R&D Programs
Sabre Systems, Inc. supported the Army CERDEC in the development of Software-Based Encryption (SBE) and Insider Threat Detection and Prevention programs (ITD&P). The SBE program focuses on the employment of Cryptographic primitives to protect data in transit, data at rest, and computational data in Tactical Networks. The ITD&P program focuses on the identification of malfeasant insider threat behavior on Tactical Systems and Applications and attempts to prevent any damaging consequences.
Computer Network Defense Service Provider Support
Sabre Systems, Inc. supported the Naval Space and Warfare Systems Command (SPAWARSYSCOM) with a team of IA and Cyber Security analysts dedicated to supporting SPAWAR Atlantic’s Military Health Systems (MHS) Computer Network Defense Service Provider (CNDSP). Sabre Computer Network Defense (CND) Analysts provided security and audit support for the network enclave security infrastructure of CONUS and OCONUS sites; provided guidance and compliance to internal and Joint Task Force-Global Network Operations (JTF-GNO) security policies; defined audit requirements and investigated and documented findings to the JTF-GNO Computer Emergency Response Team (CERT).
In the CND capacity, Sabre CND analysts supported inspection tests, reported findings of security breaches by Incident Category, participated in containing and eradicating security intrusions, and assisted in recovery of data and systems configuration. Analysts initiated protective and corrective measures when vulnerabilities were discovered, followed-up with post-incident reporting, and provided support for the ongoing analysis of threats capable of impacting MHS CNDSP services.
To support CND services, Sabre CND analysts also provided Engineering, Risk Management, Laboratory and Field Test Support to assist SPAWAR in meeting Security System technical requirements. Sabre CND analysts ensured the IT infrastructure operated according to the CNDSP’s System Security Authorization Agreements (SSAA) by reviewing programmatic, technical, and IA Certification and Accreditation documentation and performing a daily review of open source/unclassified and classified threat warnings and bulletins. Review materials came from the following sources: Director of National Intelligence (DNI), National Intelligence Council (NIC), Defense Intelligence Agency (DIA), National Security Agency (NSA), United States Strategic Command (USSTRATCOM), Joint Task Force Global Network Operations (JTF-GNO), military service cyber intelligence support activities, Central Intelligence Agency, Department of Homeland Security, US Computer Emergency Response Team, and coalition and allied partners.Read More