Project

Cyberattacks on critical infrastructure can disrupt vital services with the capacity to impact human lives. Some security operations center (SOC) analysts feel overwhelmed by the influx of threat indicators from a growing threat landscape. Timely mitigation makes it challenging to discern which alerts are significant for their organization, from cyber to physical security. In John Boyd's OODA (Observe, Orient, Decide, Act) theoretical framework, we examine the relationship between cyber threat intelligence (CTI) and critical infrastructure assets on information technology critical infrastructure attacks (Su, 2024) using automated techniques (e.g., AI, algorithms).