Dive Brief:
- A coalition of 18 companies on Wednesday introduced a project aimed at creating a universal model for sharing data deemed essential to spot and curb cyberattacks.
- The Open Cybersecurity Schema Framework project, initially established by Amazon Web Services and Splunk, acknowledges that tools used by cybersecurity professionals remain fragmented. This lack of coordination and integration across proprietary security tools makes detection and protection burdensome at multiple levels.
- The open-source effort can be applied in any environment and adheres to commonly adopted security standards, the group said.
Dive Insight:
The project’s backers intend to simplify data classification in a vendor-neutral framework to help security teams spend less time normalizing data and more time on defense.
The Open Cybersecurity Schema Framework, which builds upon Symantec’s Integrated Cyber Defense Exchange Schema, includes contributions from Cloudflare, CrowdStrike, DTEX, IBM Security, IronNet, JupiterOne, Okta, Palo Alto Networks, Rapid7, Salesforce, Securonix, Sumo Logic, Tanium, Trend Micro and Zscaler.
Two of the world’s largest cloud providers, Microsoft and Google, were not included in the initial slate of backers. The group of 18 companies announced the project at the Black Hat USA conference in Las Vegas and said it’s available for use and open to contributions.
