I’d say that the principles of science are tremendously aligned with cybersecurity throughout. Starting with empirical observation, which essentially boils down to data collection. Just like scientists rely on evidence, cybersecurity professionals rely on evidence gathering on system behavior and potential security threats. 

Next, let’s take hypothesis testing would basically be cybersecurity’s match with threat analysis. Cybersecurity employees rely on creating digital hypotheses about potential threats and vulnerabilities on what is observed. Additionally we should consider the term reproducibility. As anyone would know, working in support or development it is essential to be able to reproduce the problem.  Through this step we recreate security incidents to understand the nuts and bolts of a breach. This helps us figure out how the bad stuff happened and, more importantly, how to prevent it from happening again. Logical reasoning is basically like the foundation when it comes to creating security policies and protocols. Doing this we can use rational analysis to develop rules and procedures that make sense.

Next regarding adaptive security, similar to how science evolves and adapts we adapt our cybersecurity strategies to tackle emerging threats. Learning from past incidents is our superpower, and we use that knowledge to continually bolster our security measures.
Mathematical modeling is where we dive into the world of cryptography. Those complex encryption algorithms? They’re designed using mathematical calculations to ensure data remains confidential and intact.

The interdisciplinary approach mirrors the way science integrates knowledge from various fields. I actually took an IDS class last semester so I am all too familiar with how much it can help in any professional setting, and cybersecurity is no different. In cybersecurity, we draw insights from computer science, mathematics, psychology, and even law enforcement to tackle the multifaceted security challenges we face. Additionally, as been noted through several readings thus far – ethics isn’t just a side note; it’s a guiding principle/foundation of science and cybersecurity alike. Ethical hackers, for example, follow a code of conduct when identifying vulnerabilities and disclosing them to organizations to prevent misuse. Quantifying risk, just like in the scientific world, involves assessing probabilities and potential consequences. Cybersecurity employees commonly use risk assessment models to help organizations prioritize where to invest in security and how to allocate resources effectively.

Last but not least, evidence-based decision-making is how those in cybersecurity navigate incident response.Its important to have concrete evidence to guide you on the right moves to make. This evidence-based approach helps us grasp the full scope of an incident and chart the right course of action.

You can definitely see the commonalities and the collation between the principles of science provide a strong foundation for cybersecurity!