First Principles for Network Defenders:
A Unified Theory for Security Practitioners
In this paper, we propose that the first principle for all network defenders is to prevent high-risk material impact to the organization. The three essential tasks that support the first principle are: threat prevention, threat detection, and threat eradication. These are the network defender’s first principles; the building blocks that we all can use to protect our organizations.