惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Application and Cybersecurity Blog
Application and Cybersecurity Blog
A
About on SuperTechFans
S
SegmentFault 最新的问题
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Help Net Security
Help Net Security
有赞技术团队
有赞技术团队
博客园 - 【当耐特】
O
OpenAI News
美团技术团队
月光博客
月光博客
Apple Machine Learning Research
Apple Machine Learning Research
Schneier on Security
Schneier on Security
Webroot Blog
Webroot Blog
Cyberwarzone
Cyberwarzone
Hacker News - Newest:
Hacker News - Newest: "LLM"
Google Online Security Blog
Google Online Security Blog
T
Tenable Blog
S
Security Affairs
博客园_首页
S
Schneier on Security
Security Latest
Security Latest
T
Threat Research - Cisco Blogs
T
Tailwind CSS Blog
大猫的无限游戏
大猫的无限游戏
Spread Privacy
Spread Privacy
量子位
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
K
Kaspersky official blog
Hugging Face - Blog
Hugging Face - Blog
TaoSecurity Blog
TaoSecurity Blog
博客园 - 聂微东
Vercel News
Vercel News
M
MIT News - Artificial intelligence
T
Troy Hunt's Blog
B
Blog
MongoDB | Blog
MongoDB | Blog
Martin Fowler
Martin Fowler
Attack and Defense Labs
Attack and Defense Labs
L
LINUX DO - 最新话题
D
DataBreaches.Net
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Stack Overflow Blog
Stack Overflow Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
博客园 - Franky
W
WeLiveSecurity
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
F
Fortinet All Blogs
www.infosecurity-magazine.com
www.infosecurity-magazine.com
C
Check Point Blog
H
Hacker News: Front Page

Search Security Resources and Information from TechTarget

How to operationalize threat modeling with AI | TechTarget CISO First fully agentic ransomware attack sparks readiness concerns | TechTarget Evaluating secure enterprise browsers vs. security plugins | TechTarget The AI vulnerability storm is here: Is your security program ready? | TechTarget Perimeter to posture: A roadmap to zero trust maturity | TechTarget TLS certificate lifetime changes: What CISOs must do now | TechTarget The agentic AI 8 key aspects of a mobile device security audit program | TechTarget Why mobile security audits are important in the enterprise | TechTarget Beyond the perimeter: The shift to data-centric protection | TechTarget How agentic AI threat intelligence aids NGO cyber defense: Case study | TechTarget How to conduct a mobile app security audit | TechTarget NO FAKES Act advances: What CISOs need to know | TechTarget What CISOs should know about AI runtime security | TechTarget As Q-Day looms, 90% of systems are unprepared for PQC | TechTarget A CISO Most security pros say their culture is Zscaler lays out its vision to secure the AI era at Zenith Live | TechTarget The OpenClaw security risks every CISO needs to know | TechTarget Cloud security metrics and KPIs: A CISO Reporters' Notebook — Focus on Cyber Insurance: How Quantifying Risk Is Reshaping Security It's time to update incident response for the AI era How to build AI security guardrails without blocking innovation The prosecution gap: Why cybercrimes go unpunished AI in cyberdefense: Learning from threat actors' playbooks Top identity and access management risks CISO role changes as cyber-risk appetites in the C-suite grow CISO's guide to data minimization Researchers build autonomous AI worm that can reason and adapt How to secure data at rest, in use and in motion How to find cyber-risk data sources for a FAIR analysis Lost in translation: Cybersecurity board reporting for CISOs How to prepare security controls for future AI regulations EO 14390 raises stakes for enterprise cybersecurity First month of Mythos Preview testing exposes 10K flaws OT attacks shift from recon to physical control, raising stakes For CISOs, dawn of OpenAI Daybreak brings good and bad news Gartner Security & Risk Management Summit 2026: Adapting for AI | TechTarget Inside business email compromise attacks: Real-world examples Verizon 2026 DBIR: 6 key takeaways for CISOs Identity security for AI agents: The proliferation challenge How to build a business impact analysis checklist Taking care of business: The CISO's role in a cyber crisis What CISOs need to know about AI audit logs SOC vs. MDR: What CISOs need to consider Instructure cyberattack reignites ransom payment debate Transform SIEM rules with behavior-based threat detection CISO's guide: How to test an incident response plan How to implement zero trust for AI Data after the breach: Economics of the dark web The breakup: Why CISOs are decoupling data from their SIEMs | TechTarget News brief: Security worries and warnings as AI use expands How to construct an effective security controls evaluation 5 leading enterprise password managers to consider Claude Mythos changes the AI security threat matrix Buyer 6 things to check in your cyber insurance policy fine print How cyber insurance helped with breach recovery -- or not News brief: Critical infrastructure, OT cybersecurity attacks Tape's strategic role in modern data protection Top zero-trust use cases in the enterprise What every CISO should consider before a SIEM migration CISO's guide to centralized vs. federated security models Shadow code: The hidden threat for enterprise IT How to fix cybersecurity's agentic AI identity crisis 5 top SIEM use cases in the enterprise Top 8 e-signature software providers for 2026 How do digital signatures work? News brief: AI woes continue for security leaders Deepfake era demands proof-based security, not just awareness Is SOAR dead or alive? Sort of The push for digital sovereignty: What CISOs need to know Beyond awareness: Human risk management metrics for CISOs Cybersecurity in the age of AI means bigger, faster threats At RSAC 2026, AI optimism and anxiety -- and an MIA U.S. government Inside the SOC that secured RSAC 2026 Conference How to roll out an enterprise passkey deployment How to improve the SOC analyst experience -- and why it matters How contact centers detect and prevent fraud News brief: Iranian cyberattacks target U.S. water, energy CISO checklist: Cybersecurity platform or marketing ploy? RSAC 2026 Conference: Key news and industry analysis | TechTarget Next-generation firewall buyer's guide for CISOs Contact center monitoring best practices for CX leaders RSAC 2026: Cyber insurance and the rise of ransomware Agentic AI's role in amplifying and creating insider risks RSAC 2026 recap: AI security and network security trends Identity security at RSAC 2026: The new enterprise dynamics Meaningful metrics demonstrate the value of cyber-resiliency What to know about red team testing and the law News brief: Iran cyberattacks escalate, U.S. targets named 5 top SOC-as-a-service providers and how to evaluate them Cloud security architecture: Enterprise cloud blueprint for CISOs Contact center compliance checklist for modern workforces How AI caught a malicious North Korean insider at Exabeam Watch your words: Tim Brown's advice for CISOs News brief: U.S. absence at RSAC sparks leadership concerns Network security management challenges and best practices 10 enterprise secure remote access best practices
Florida public sector training on SimSpace cyber range: Case study | TechTarget
Alissa Irei · 2026-06-16 · via Search Security Resources and Information from TechTarget

Cyber ranges, once the domain of national defense agencies, are becoming more widely accessible. In the public sector, the state of Florida is leading the charge.

Experience is the best teacher, but in cybersecurity, it often comes at a cost. Just ask anyone -- from a CISO to a Tier 1 analyst -- who has lived through a major breach.

In Florida, however, thousands of public-sector employees can get realistic, hands-on incident response experience for free through a state-funded cyber range. Cyber ranges mirror users' IT environments and deliver dynamic threat simulations that replicate the pressure, chaos and variability of real-life incidents in a safe and controlled setting.

"The best way to prepare is to practice, much like pilots," said Bruce Caulkins, director of cyber solutions and technology at Cyber Florida, the state cybersecurity center that runs the range. "They spend hours in the flight simulator going through all the things that can go wrong and practicing what they would do before they actually fly the plane."

The challenge: Provide realistic incident response training for the public sector

[Pilots] spend hours in the flight simulator going through all the things that can go wrong and practicing what they would do before they actually fly the plane.
Bruce Caulkins, Director of cyber solutions and technology, Cyber Florida

In 2021, Cyber Florida sought ways to nudge the state's public-sector organizations from compliance-driven cybersecurity toward proactive cyber-resilience and cyber-readiness.

"Resilience means being able to do the tasks and functions that you need to do in a cyber environment that might be degraded, disrupted, you name it," Caulkins said.

Unimpressed with basic sandbox options, Cyber Florida began entertaining the possibility of a cyber range -- traditionally within the purview of national defense agencies -- for state, county and municipal use. While a sandboxed environment typically offers a confined, relatively simple training ground, a cyber range aims to mirror an organization's actual network to better simulate complex, real-world conditions.

Cyber Florida enlisted Caulkins -- a retired U.S. Army colonel and expert in cybersecurity modeling and simulations -- to conduct a feasibility study and, ultimately, to serve as the organization's cyber range director.

The decision: Buy or build

Based on the feasibility study, Cyber Florida ruled out DIY and on-premises options, citing upfront hardware and software costs and ongoing operational and maintenance burdens. A third-party, cloud-based offering would let the organization play to its strengths.

"We looked at the things that we're good at and the things that other people would be good at," said Ernie Ferraresso, senior director at Cyber Florida. "We are good at knowing which organizations should be on the range and what types of scenarios and challenges they need. What we don't have expertise in is running data centers."

They vetted around a dozen cyber range vendors and eventually partnered with Boston-based SimSpace. Ferraresso and Caulkins worried that Cyber Florida might get lost in the shuffle at a larger provider, and they were impressed by SimSpace's responsiveness, flexibility and grasp of the public-sector mission.

The results: Live-fire exercises and adapting to emerging threats

Florida's state cyber range went live in early 2023, with both on-demand modules for individual users and scheduled, live-fire team training events that present small groups of tech practitioners with realistic incident response and cyber crisis scenarios.

"They are basically thrown into a situation where they have to find the needle in the haystack -- detect the problem, eradicate the problem and conduct additional activities like calling the FBI," Caulkins said.

Advanced exercises include engaging technical teams and executive managers in tandem to stress-test incident response communication strategies. Practitioners can work with hands-on-keyboards in the SimSpace cyber range while leadership participates in a parallel tabletop exercise.

"What we're trying to do is show the managers what their tech folks do and vice versa," Caulkins said. "So, the tech folks can see how the managers react and maybe [better communicate] about what's going on."

According to Ferraresso, SimSpace can tweak the cyber range environment to feature tools that individual teams use in real life, such as CrowdStrike or ReliaQuest, and to reflect novel, emerging threats.

"For example, we were talking to one of our federal partners about doing a project overseas. One of the guys from the federal side said, 'Hey, do you think you could load up a Volt Typhoon-type incident?'" he said.

Caulkins texted SimSpace's CTO from the meeting to ask if it was possible. The answer was an immediate "yes," according to Ferraresso, who added that the ability to quickly adapt the cyber range to reflect a rapidly shifting threat landscape has proven critical.

"A realistic simulation of a Volt Typhoon attack against a critical infrastructure entity -- that didn't exist before," he said. "You want to be able to say, 'Hey, this is how the landscape is changing, and we need to change the rules.'"

What's next: Cyber-physical attack simulations

Currently, the cyber range's users consist primarily of employees of state and local government agencies. In light of escalating attacks on critical infrastructure, however, Cyber Florida aims to soon expand the user base to include public-private interests, such as utility providers.

"It's important to us to integrate more of the cyber-physical, control-loop type of challenges," Ferraresso said.

He encouraged other organizations to consider the spectrum of potential benefits a cyber range might offer, beyond just annual training and evaluations. For Florida, Ferraresso added, it has become an operational necessity.

Alissa Irei is senior site editor of Informa TechTarget Security.

Dig Deeper on Security operations and management