G.4.3 Gather attack trends

Control Details

Objective

Stay current on attack trends.

Definition

Have a process for continuously learning about emerging attack trends and vulnerabilities. Gather information from software acquirers, users, and public sources on potential vulnerabilities in the software and third-party components that the software uses, including AI models, and investigate all credible reports. Use a subscription to a cyber threat intelligence feed, attend technical conferences, monitor attacker forums, and study trends within the enterprise. Make this information on attack trends actionable and useful for developers, testers, security operations, and others to identify vulnerabilities in existing products, perform improved threat modeling and security architecture, and evolve the SDLC.

Assessment Questions

1. How do you monitor new attack trends and vulnerabilities applicable to your software and AI models, such as by monitoring a cyberthreat intelligence feed and attacker forums, or attending conferences?

Reference sources

1. EO 4e(vi) 4e(vii)
2. SSDF RV.1.1
3. SSDF-AI RV.1.1
4. BSIMM AM1.5 CMVM1.2
5. 800-161 SI-4 SI-5 RA-5
6. Self-attestation 2
7. SAMM I-SB-2-B V-ST-2-A O-EM-3-B
8. OSPS OSPS-SA-03