Hi, I would like to present my latest creation. It's a SANS STI research paper on assessing the CIS Critical Security Controls using OSSIM. For quite some time, I have wanted to share some of my hard earned Alienvault configuration skills, and the need to write an academic paper was the perfect excuse. Although it's geared toward the Critical Security Controls, it's easy to port it to other compliance standards using the techniques described. The link to the paper in the SANS reading room is here:
Of course, now my cover's blown between my real name and forum handle; back when I first started posting here, I was feeling quite wet behind the ears, and was paranoid of disclosing too much security related information. I suspect as an information security practitioner, I'll be feeling wet behind the ears for years to come, so I'll just get on with it :)
Please let me know what you think. I hope to build it out a bit more in the future, but it's hard to tell what time will permit.