Re: [cti] Inviting nominations for Chair of Cyber Threat Intelligence (CTI) TC,

[Peter Allor <pallor@us.ibm.com>]

Trey,
I think you and I are really close.

Point:
0)  YES
1)  Yes
2)  Preferred, not mandatory
3)  ABSOLUTELY

Pete
(best for me to be 'Pete' and Peter Brown to be "Peter")

Trey Darley ---06/12/2015 04:35:30 AM---Hey, Pete - Note that I specified "an academic-cum-actual security researcher with dirt under their

From: Trey Darley <trey@soltra.com>
To: Peter Allor/Atlanta/IBM@IBMUS, Peter F Brown <peter@peterfbrown.com>
Cc: Aharon Chernin <achernin@soltra.com>, "Jordan, Bret" <bret.jordan@bluecoat.com>, Carol Geyer <carol.geyer@oasis-open.org>, "Chet Ensign" <chet.ensign@oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Richard Struse <Richard.Struse@hq.dhs.gov>, "Robin Cover" <robin@oasis-open.org>, Scott McGrath <scott.mcgrath@oasis-open.org>, Terry MacDonald <terry.macdonald@threatloop.com>, "tony@yaanatech.com" <tony@yaanatech.com>
Date: 06/12/2015 04:35 AM
Subject: Re: [cti] Inviting nominations for Chair of Cyber Threat Intelligence (CTI) TC,

---

Hey, Pete -

Note that I specified "an academic-cum-actual security researcher with dirt under their fingernails", not merely an academic. Nor am I against a private-sector co-chair, but "preferably _not_ a vendor". 

The point is, if we agree on the need for a co-chair, here are the essential qualifications:

0) someone practical
1) someone neutral
2) someone non-US
3) someone that isn't going to drive Rich crazy (ie, compatible personalities == enhanced collaboration)

Cheers,
Trey
--
Trey Darley
Senior Security Engineer
Soltra | An FS-ISAC & DTCC Company
www.soltra.com

---

From: cti@lists.oasis-open.org <cti@lists.oasis-open.org> on behalf of Peter Allor <pallor@us.ibm.com>
Sent: Thursday, June 11, 2015 18:01
To: Peter F Brown
Cc: Aharon Chernin; Jordan, Bret; Carol Geyer; Chet Ensign; cti@lists.oasis-open.org; Richard Struse; Robin Cover; Scott McGrath; Terry MacDonald; tony@yaanatech.com; Trey Darley
Subject: RE: [cti] Inviting nominations for Chair of Cyber Threat Intelligence (CTI) TC, 
 
As a data point, in discussing adoption of STIX/TAXII with National Government CSIRTs and other large corporate international organizations, a US/DHS only way forward, has / is an inhibitor to formally using STIX/TAXII in the recent past.

I am aware of some USG elements liking that we demonstrate a broad representation.

So, I endorse and support Rich, both for his leadership and technical passion as well as vision for this effort.     And will bow to what the group decides.

But would heavily suggest that we have someone else assist Rich in his chair duties as his co-chair.   This is more about perception and adoption than about substance/content.   And no, I am not soliciting an academic.    We really need and want 'industry' (across the board) to use this.  

Pete

Peter F Brown ---06/11/2015 11:25:01 AM---+1 The significance only means something if we *make* it mean something.

From: Peter F Brown <peter@peterfbrown.com>
To: "tony@yaanatech.com" <tony@yaanatech.com>, Trey Darley <trey@soltra.com>, Peter Allor/Atlanta/IBM@IBMUS
Cc: Chet Ensign <chet.ensign@oasis-open.org>, Aharon Chernin <achernin@soltra.com>, Terry MacDonald <terry.macdonald@threatloop.com>, "Jordan, Bret" <bret.jordan@bluecoat.com>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Richard Struse <Richard.Struse@hq.dhs.gov>, "Scott McGrath" <scott.mcgrath@oasis-open.org>, Robin Cover <robin@oasis-open.org>, Carol Geyer <carol.geyer@oasis-open.org>
Date: 06/11/2015 11:25 AM
Subject: RE: [cti] Inviting nominations for Chair of Cyber Threat Intelligence (CTI) TC,

---

+1
The significance only means something if we *make* it mean something.
I understand that there might be concern about an OASIS TC being seen just to do DHS’s bidding. However, expanding on what Tony rightly says, there are many TCs where there are initial worries that one party (public, private, research, not-for-profit) is set to run the show – but the nature of the open process, transparency, and engagement from all sides will do more to “disappear” that myth than any “fix”.
This is not an argument against co-chair(s) per se: just that, if we need such a role, it will become apparent quickly enough.
All the best,
Peter
 
From: Tony Rutkowski [mailto:tony@yaanatech.com] 
Sent: 11 June, 2015 08:11
To: Trey Darley; Peter Allor; Peter F Brown
Cc: Chet Ensign; Aharon Chernin; Terry MacDonald; Jordan, Bret; cti@lists.oasis-open.org; Richard Struse; Scott McGrath; Robin Cover; Carol Geyer
Subject: Re: [cti] Inviting nominations for Chair of Cyber Threat Intelligence (CTI) TC,
 
The world of international technical committees in
this sector contains numerous examples of chairs
from government agencies.  Furthermore, Rich
is rather more than an agency representative in
this context.  From both a substantive perspective
as well as effective leadership and "messaging,"
his chair position is important.

As someone who leads the ETSI equivalent activity,
(and formerly led the equivalent in ITU-T) Rich's 
chair position probably enhances the global
assimilation of the CTI suite.

--tony
On 2015-06-11 10:45 AM, Trey Darley wrote:

<snip> 
However, I suggest the following, especially for us 'Americans' to consider.    We need to have another individual as a co-chair.    Simply put, to not be something that OASIS is adopting only for the US Department of Homeland Security (DHS).
</snip> 
 

-- 
________________________________ 
Anthony Michael Rutkowski  
EVP, Industry Standards & Regulatory Affairs 
tony@yaanatech.com 
+1 703 999 8270 
________________________________ 
Yaana Technologies LLC 
542 Gibraltar Drive 
Milpitas CA 95035 USA