-
Notifications
You must be signed in to change notification settings - Fork 16
Call For Participation
Looking for somewhere that you can help? Here is a list of work items that are currently underway and could use your expertise! We are looking for about 1 hour/week to help us in any of these activities. Questions? Contact russell.warren@us.ibm.com, OCA program manager.
This paper will describe the OCA architecture, its benefits and how it can help provide a better security approach than the current ad-hoc, non-integrated approach. This paper will also relate our current OCA projects to this architecture and identify needs for new projects that can help fill out the OCA architecture. We are looking for contributors and reviewers. The paper is posted in our documentation GitHub Documentation GitHub
This workgroup meets bi-weekly and is currently focused on developing technical diagrams (using the C4 diagram mythology). We are looking for assistance in developing these diagrams that will show the interactions across the security components and how the OCA projects fit. See our documentation GitHub Documentation GitHub. Work items include:
- Expertise on SIEM, SOAR and Threat Intelligence. We are working on Use Case 1 (malware detection and response), which is OCA Use Cases. We need help creating the C4 diagrams (component and container level). We also need help defining use cases for the SIEM, SOAR and Threat Intelligence analyst personas.
- Expertise on security components, as identified in the OCA Architecture Overview to create C4 diagrams, identify required workflows (for the Ontology project) and add to the architecture paper to cover the component.