Working Paper: Mitigating Machine Learning Risks within a Vulnerable SIEM to Prevent Biased SOC Decisions : National CyberWatch Center

Mitigating Machine Learning Risks within a Vulnerable SIEM to Prevent Biased SOC Decisions Working Paper

Working Paper: Mitigating Machine Learning Risks within a Vulnerable SIEM to Prevent Biased SOC Decisions

In this working paper, authors Landmesser and Vommi explore weaknesses in machine learning systems used by a SIEM that present a technical issue, which can also negatively influence decisions made by SOC personnel. Incorrect ML classifications from APT attacks result in incorrect security decisions based on SIEM output, causing an even more damaging impact on required incident response.

Publisher: National CyberWatch Center

National Cyberwatch Center Library

Working Paper: Mitigating Machine Learning Risks within a Vulnerable SIEM to Prevent Biased SOC Decisions

Publisher: National CyberWatch Center

Date Published: October 18, 2023

Classification: Protection and Defense (PD)

Education Level: Higher Education, Informal Education, Vocational/Professional Development Education

Type: Working Paper

Language: English

Working Paper: Mitigating Machine Learning Risks within a Vulnerable SIEM to Prevent Biased SOC Decisions

Publisher: National CyberWatch Center

Date Published: October 18, 2023

Classification: Protection and Defense (PD)

Education Level: Higher Education, Informal Education, Vocational/Professional Development Education

Type: Working Paper

Language: English

Related Resources

Working Paper: Competence-Based Mastery Learning (CBML): A brief guide to what’s different about it and the effects on students and faculty

Working Paper: Designing and Evaluating the Effectiveness of Competency-Based Mastery Learning (CBML) Curriculum

Working Paper: The Two-Sigma Solution: Why competency-based mastery learning is more effective in readying students to succeed in college and a career