Resources
Resources
Where to Report a Security Incident
Federal-Level Resources
- Internet Crime Complaint Center (IC3)
- FBI, San Diego Field Office
- Cybersecurity and Infrastructure Security Agency (CISA)
State-Level Resources
- California Cybersecurity Integration Center (Cal-CSIC)
- California Attorney General - Office of Cybersecurity
Local Resources
Safely Test Suspicious Files, URLs, and More
Use these free online platforms to analyze suspicious files, domains, IPs, and URLs to detect malware and other potential breaches.
Past Cyber Lab Newsletters
See below for links to each of the San Diego Regional Cyber Lab’s past quarterly newsletters. If you would like to receive a copy of future newsletters, click on the “Send us a Message” button at the bottom of this page and provide us with your name/email and we will add you to our distribution list.
Homeland Security Information Network (HSIN)
The Homeland Security Information Network (HSIN) is the Department of Homeland Security's official system for trusted sharing of Sensitive But Unclassified information between federal, state, local, territorial, tribal, international and private sector partners. Mission operators use HSIN to access Homeland Security data, send requests securely between agencies, manage operations, coordinate planned event safety and security, respond to incidents, and share the information they need to fulfill their missions and help keep their communities safe. For more information about HSIN, please contact HSIN@hq.dhs.gov.
Threat Intelligence Feeds
These are continuous data streams filled with threat information in real-time as collected by artificial intelligence. Structured Threat Information eXpression (STIX) and Trusted Automated eXchange of Intelligence Information (TAXII) are standards developed to improve the prevention and mitigation of cyberattacks. STIX provides the “what” of threat intelligence while TAXII defines “how” that information is relayed. A STIX/TAXII feeds are open, community-driven efforts among an active network of developers and analysts.
The following are STIX/TAXII feeds:
Intelligent Management Community Edition
Splunk Intelligence Management offers a free Community Edition plan for all members of Information Sharing and Analysis Centers/Organizations (ISAC/ISAO). The easy-to-use platforms allows members to manage and share threat intelligence – providing timely, actionable and relevant information among a trusted sharing community.
Training Resources
Numerous Government and Industry Organizations offer free training resources that can help bolster the Cybersecurity knowledge at your organization. Please see the following free training resources:
- NIST’s Guide to Cyber Ranges
- DoD’s Cyber Academy
- Google’s Spot-the-Phishing Quiz
- National Cybersecurity Preparedness Consortium Training Courses
- CISA Web Based and Instructor Lead Trainings
- CYBER.ORG Range
- CLARK (Cybersecurity Labs and Resource Knowledge-base)
- CyberStart America (Cybersecurity Training for High School Students)
- Cybrary
Best Practices
Staying up to date with the cybersecurity industry’s best practices might not be very difficult for enterprise-level organizations with a budget that can afford an entire IT Department, but for many local organizations, staying ahead of the curve is often considered too costly of an endeavor. The San Diego Regional Cyber Lab hopes to alleviate some of these concerns by providing our local partners with links to some of the industry’s best cybersecurity practices.
SANS Security Policy Templates
Sometimes the hardest part in addressing your organization’s cybersecurity shortcomings is knowing how to get started, and SANS is here to help. SANS is a leader in the cybersecurity industry, and they have provided the public with a wide variety of templates for your organization to utilize as you increase your overall resiliency. These templates cover a wide range of scenarios, including incident handling and application/network security.
National Institute of Standards and Technology (NIST) Framework
At the White House’s direction in 2013, NIST was directed to coordinate with key stakeholders across the country to develop a framework, based on best practices, for reducing the overall risk of cyber threats to critical infrastructure. This framework consists of spreadsheets, roadmaps, and more that will allow your organization to increase your overall cyber posture and ensure that you are protecting your core infrastructure to the best of your abilities. A comprehensive assessment of your organization’s cybersecurity practices might seem like an overwhelming endeavor, but with access to these resources, including the NIST quick start guide, we believe you will find it to be exceptionally worthwhile.
Learn more about National Institute of Standards and Technology (NIST)
Cybersecurity and Infrastructure Security Agency (CISA)
Collaboration is key within the cybersecurity sector and is the primary reason why the San Diego Regional Cyber Lab exists today. The Cybersecurity and Infrastructure Security Agency (CISA) goes above and beyond as a nation-leading collaborative effort to connect stakeholders in industry and government to one another. These relationships allow the coordination of resources, analyses, and tools in the ongoing efforts of cyber defense. There are countless resources listed on the CISA website and we hope you take a moment to determine if they can assist with any of your organization’s ongoing cyber operations.
Learn more about Cybersecurity and Infrastructure Security Agency (CISA)
Center for Internet Security (CIS)
The Center for Internet Security, Inc. (COS) is a community-driven nonprofit, responsible for publishing the CIS Controls and CIS Benchmarks which are globally recognized best practices for securing IT systems and data. The CIS utilizes a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.
The full list CIS Tools and Services can be found here.
Keep Up with the Latest in Cybersecurity
The following is a collection of the most popular newsletters, podcasts and other resources to keep up with the ever-changing cybersecurity industry.