The Cyber Intelligence Defence Centre (CIDC) is a component of the Centre for Strategic Cyberspace and Security Science (CSCSS).
The Cyber Intelligence Defence Center (CIDC) develops and shares intelligence on: malware, malware developers and cyber-criminals. We are an internationally oriented, intelligence analysis and sharing center.
The CIDC team is composed of carefully selected intelligence professionals with a passion for Intelligence, having demonstrated excellence in deployed support to clients. We do doe this by:
- Recruiting experienced intelligence professionals;
- Having a lean form comprising of small teams working within their specialties; and,
- Combing data from multiple sources into our intelligence products, allowing us to provide context, insight and a long term view
It’s the quality of CIDC personnel that enables us to produce products having:
- Detailed ‘Situational Awareness’ of cyber events;
- In depth analysis – more than ‘we tracked the hacker to this IP address’; and,
- Forecasting of malware trends and aggressor activity.
CIDC products are distributed by e-mail (‘pushed’) to clients, or clients may download (‘pull’) from the CIDC subscription site. CIDC provides supporting broadcasts for all our Intelligence Digests and specialty Intelligence Reports, enabling CIDC subscribers to interact with our analysts in a group setting. CIDC can provide one-on-one support to clients preferring direct contact or a CIDC team member can travel to your location to provide face-to-face briefings.
CIDC’s objective is to develop Intelligence for CIDC clients and to make it work. CIDC does this by providing clients with the following services:
- Threat Assessments: CIDC examines potential and current cyber threats for your organization. To do this, the CIDC team learns about your organization, how it operates, its culture and your Internet exposure. The CIDC report informs you what attackers are most likely to target, when those attacks might occur, what the most common methodologies for attacking are, and mitigation tactics against those threats.
- Intelligence Evaluations: We conduct cyber security evaluations of client’s cyber security operations for its ‘threat intelligence’ inputs and effectiveness. This includes appraising your situational awareness, how intelligence is used, decision making processes, management oversight and the return on your security / intelligence dollars.
- Intelligence Training: To use Intelligence, you have to be aware of what it is and what it can potentially do for your organization. At an executive level you need to know what direction you should provide to your intelligence team and what reporting they should be providing back to you. At a management / supervisory level you need to know the capabilities and limitations of Intelligence as well as how to respond to changes in the threat. In the Security Operations Centre, and for small security teams, you need to know how to leverage your situational awareness and intelligence to create the most effective security envelope.
CIDC does not use standard cyber security industry ‘Threat Intelligence’ practices. CIDC uses Intelligence in its historical and operational context as defined over many centuries of use. CIDC defines ‘Intelligence’ in its most fundamental form as “Foreknowledge of your Adversaries”. This means CIDC tracks computer aggressors:
- Who they are;
- What they are doing; and,
- What they are going to be doing.
Part of a Larger Team
CIDC is a component of CSCSS. This means CIDC can call on the resources of any of the CSCSS groups and/or experts to support CIDC clients. Resources available include expertise in:
- International Cyber Policy and Planning;
- International Cyber Law;
- Strategic Cyberspace Sciences;
- Critical Infrastructure; and,
- Cyber Crime Response Group or C3i.
For more information see the CSCSS ‘Experts Page‘ or the CSCSS ‘Capabilities Overview‘.
What Does CIDC Do?
If you are still looking for specific information on what we do, please look at some of our case studies.
CIDC is currently morphing into a new form. Look for announcements on CIDC’s News page.