Threat Modeling – MOBS Bangladesh

SOAR Playbook for Threat Hunting

August 19, 2025August 19, 2025 Shuvro

Reading Time: 6 minutesThis blueprint outlines the integration of Security Orchestration, Automation, and Response (SOAR) with proactive Threat Hunting. This synergy shifts organizations from reactive to proactive defense, enhancing cybersecurity posture, improving Security Operations Center (SOC) efficiency, and accelerating response times to advanced threats. Key recommendations include phased implementation, KPI-driven measurement, continuous improvement, and investment in human capital.

KEV to EPSS – Smarter Threat Prioritization

August 17, 2025 Shuvro

Reading Time: 5 minutesBlueprint Details 1. Executive Summary: The Imperative for Smarter Threat Prioritization The cybersecurity landscape is overwhelmed by an ever-increasing volume of vulnerabilities, with over 25,000 new CVEs reported in 2022 alone. Traditional vulnerability management, often relying solely on CVSS scores, Read More …

OCTAVE Threat Modeling

August 15, 2025August 15, 2025 Shuvro

Reading Time: 3 minutesn today’s complex digital landscape, securing your organization requires moving beyond simple checklists. You need a strategy that focuses on what truly matters: your most critical business assets. This is where the Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE) framework comes in. Developed by Carnegie Mellon University’s Software Engineering Institute (SEI), OCTAVE provides a risk-based approach to threat modeling that aligns security efforts with business goals.

Build a Security Metrics Program to Drive Maturity

August 6, 2025August 6, 2025 Shuvro

Reading Time: 3 minutesThis document provides a condensed blueprint for establishing a security metrics program focused on driving organizational maturity.

Data Collection Methods for CTI (Cyber Threat Intelligence)

July 28, 2025July 28, 2025 Shuvro

Reading Time: 3 minutesAuthor: Shahab Al Yamin Chawdhury Date: March 4, 2024 Version: 1.0 Executive Summary This blueprint provides a strategic methodology for designing and operationalizing a world-class Cyber Threat Intelligence (CTI) data collection program. It moves beyond simply listing sources to establish Read More …

Cyber Incident Response Drill Testing

July 26, 2025 Shuvro

Reading Time: 4 minutesStatus: Final Blueprint Summary Author: Shahab Al Yamin Chawdhury Organization: Principal Architect & Consultant Group Research Date: 25 July 2025 Location: Dhaka, Bangladesh Version: 1.0 1. Executive Summary This document addresses the critical gap identified when organizations mistakenly assume their Read More …

API Security in the Enterprise

July 24, 2025 Shuvro

Reading Time: 3 minutesStatus: Final Blueprint (Summary) Author: Shahab Al Yamin Chawdhury Organization: Principal Architect & Consultant Group Research Date: February 2, 2025 Location: Dhaka, Bangladesh Version: 1.0 (Summary) 1. Executive Summary Application Programming Interfaces (APIs) are the central nervous system of the Read More …

S	M	T	W	T	F	S
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30