Presenters: Jon Miyake, Kylan Curran

Room: Cedar Room, EMU 231, Level 2

Presentation: Hugin and Munin : Bringing data from complexity to clarity / Designing a single pane of glass for the UO CyberSecurity Operations Center

Time: 01:35p – 02:05p

The University of Oregon Cybersecurity Operations Center employs a team of Student Security Analysts who handle daily security investigations and operations. These students bring varying levels of experience— from just starting in the field to those with 2-3 years of hands-on operational experience. To ensure consistent, high-quality service delivery across all skill levels, we combine comprehensive training and standardized incident response playbooks with an internally-developed cybersecurity tool called “Hugin and Munin.”

Named after Odin’s legendary ravens from Norse mythology—representing “Memory” and “Thought”—this dashboard embodies the mythological ravens’ role as information gatherers and wisdom providers. Our dashboard gathers intelligence from multiple sources to provide comprehensive situational awareness.

Hugin and Munin presents analysts with a unified “single pane of glass” interface that delivers a view of both IP addresses and user accounts by integrating data from internal and external sources. This tool leverages multiple resources to help student analysts quickly assess potential risks associated with individuals or assets, enabling them to make more informed decisions about alert criticality and reduce customer impact due to false positives. This presentation will explore the tool’s core functionality, concepts that lead to why the tool is important, and examine the underlying design principles that drive its effectiveness: creating unified data views, providing a wider view of individuals/assets, maintaining balanced perspectives on security indicators, and enhancing analyst awareness of potential threats. This tools supports our student-centered approach to cybersecurity operations and provides invaluable real-world training for the next generation of cybersecurity professionals.