Sarah Brown

Sarah Brown

Senior Scientist, Capability Development Branch, NATO Cyber Security Centre

Sarah Brown is a cyber security expert with interests in threat intelligence, security standards, and information sharing. She particularly enjoys working across organizations, in a multinational environment, addressing common technical and strategic challenges.

She is serving in the role of senior scientist in the Capability Development Branch within the NATO Cyber Security Centre (NCSC) since August 2016. In this role, she is responsible for requirements capture, policy recommendations, and system design for future cyber security capabilities in NATO. She is also involved in evaluating NCIA and NATO cyber security programs, organizational design, and recommendations for their evolution. She has focused on technical tasks in the area of cloud security, incident response, and threat intelligence. In addition, she serves as the NCSC industry liaison to ensure an active exchange with leading industry cyber security and has been involved in organizing NATO’s flagship cyber security conference, NIAS.

Prior to NATO, she worked on the threat intelligence team at Fox-IT delivering strategic, operational, and tactical financial cyber threat information to banks around the world. In this role, she evolved Fox-IT’s threat intelligence platform to serving structured threat information and automated feeds adhering to the STIX threat standard.

Between positions with Fox-IT and NATO, Sarah worked as an independent researcher and consultant to a number of organizations. Her personal research into behaviours and Patterns of Rogue Hosting Providers in Dutch IP space was delivered at the following events: Enigma 2017, ACSC 2017, NCSC One Conference 2017, Borderless Cyber Europe 2017, Holland Strikes Back 2017, and Hack in the Box 2018.

Sarah worked from 2004-2013 years in the Cyber Security Division of The MITRE Corporation, where her work focused on cyber defence information sharing, coalition operations, cyber exercises, and technical security standards for numerous US Department of Defense and US Intelligence Community sponsors. She moved to The Netherlands in 2008 to serve as a US national contribution and technical liaison to the NATO C3 Agency in The Hague.

Sarah has also spoken at RSA, FIRST, the ACM Workshop on Information Sharing and Collaborative Security (WISCS), and the International Conference on Cyber Conflict (CyCon). Sarah holds B.A. degrees in Mathematics and Computer Science from Oberlin College and an M.A. in Mathematics from University of Maryland, College Park.