Cybersecurity Commander’s Manifesto: The Art of Tactical and Strategic Defense — Chapter 1

Alican Kiraz
15 min readJul 24, 2024
Source: Wikipedia. Edit by Alican Kiraz

“The battlefield is the test of true leaders.”

Richard the Lionheart

Throughout the existence of humanity, there have always been opposing poles on the stage of history. Good-evil, beautiful-ugly, weak-strong, new-old, light-dark, etc., these distinctions and separations have become a part of the human mind. Therefore, in history, humanity has been divided or united for various reasons. These divided groups, by opposing each other, have created demands such as competition, war, ignorance, and threats on different sides. These demands have turned into actions through various motivations or a tiny spark. Ultimately, this has created oppositions like attacker vs. defender, red vs. blue. Throughout human history, this polarization has caused many wars, both large and small. Until our modern age, these wars have continued in physical, psychological, manipulative, “cold”, and conventional forms. With the development of the cyber world, a new battlefield has been created, one that includes wars between states, companies, groups, and even individuals. Therefore, even if we are not aware of it, as cybersecurity experts, we must use strategic, tactical, deterrent, and manipulative principles of warfare correctly, just like a commander and warrior. We must analyze the great commanders and battles throughout history accurately. Even though time, events, and battlefields change, the critical decisions made by commanders in the war of strategies will enable us to apply correct analyses, strategies, and tactics in our current situations.

Source: https://www.historicmysteries.com/history/carl-von-clausewitz/26631/

“…Just as we admire composure in an intelligent conversation, we also admire quick thinking in the face of danger. The definition of ‘composure’ indicates the speed and accuracy with which intelligence provides assistance.”

— On War, Carl Von Clausewitz

When I was 16, after reading a book about the life and wars of Alexander the Great, I became deeply interested in military strategies and tactics. Over the past 15 years, I have continually read about the lives, strategies, battles, and revolutions of military geniuses who were ahead of their time, such as Hannibal of Carthage, Alexander the Great, Napoleon Bonaparte, Erwin Rommel, Mustafa Kemal Atatürk, Julius Caesar, Sun Tzu, Ieyasu Tokugawa, Genghis Khan, Sultan Mehmed II the Conqueror, Simon Bolivar, Ernesto ‘Che’ Guevara, Dwight D. Eisenhower, Ho Chi Minh, Ulysses S. Grant, George S. Patton Jr., Mao Zedong, and Isoroku Yamamoto.

For the past 9 years, I have been compiling my experiences in the field of cybersecurity, and for the last 2 years, I have been reflecting on how I can apply the lives and decisions of these geniuses to the incidents, defense strategies, and interventions we encounter in our professional lives. I wanted to share these reflections and aphorisms in this article series with you.

Mustafa Kemal Atatürk, Source: Wikipedia

“ …In life, you must be a warrior, and war requires reality. While others find beauty in endless dreams, warriors find beauty in reality, know their limits, and make the most of what they have.”

— The 33 Strategies of War, Robert Greene

Now, let’s take inspiration from the strategies and tactics used by these legendary commanders and establish principles for ourselves. You will read about the historical events that had the most impact on me, staying true to the facts, in my own narration. There may be minor errors in some points.

Don’t Just Be a Spectator in the Battle!

George S. Patton — Argonne Battle, Argonne Forest, France, WWI

George S. Patton Jr. was born in 1885 in California and came from a distinguished military family, one of the most well-known in America. His family had a respected history, having fought in the American Revolutionary and Civil Wars. After graduating from West Point Military Academy, Patton served with distinction in command of tank units during World War I. In World War II, he became famous for his fearless, swift, and bold command style, particularly in North Africa and Europe. His advance into Germany as the commander of the 3rd Army after the Normandy Invasion and his role in the Siege of Bastogne cemented his military genius.

In the fall of 1918, in the Argonne Forest of France, George S. Patton would face one of the most challenging and pivotal moments of his life. At that time, Patton was in command of the American tank units in World War I and played a significant role in the Argonne Offensive. However, Patton was grappling with an internal issue. Coming from a family where courage and heroism were almost considered sacred honors, he was terrified of feeling fear and panic on the battlefield.

Maj. George S. Patton Jr. commanded the 304th Tank Brigade in France during the last year of WWI.
Source: https://www.arlingtoncemetery.mil/Blog/Post/11460/Patton-and-World-War-I-s-Unknown-Soldier

On one of the misty mornings of the war, young Patton, at the age of 22, was about to experience his first terrifying battle. Patton’s tank unit, under his command, faced an intense German assault. The enemy’s machine gun fire and artillery bombardment were putting the American troops under severe pressure. Patton had positioned some infantry on a hill during the attack, but the American infantry were suddenly pinned down by German fire. Realizing the situation, they considered retreating, but if they did, they would be caught in the crossfire on both sides of the hill. Advancing was impossible because they faced a German machine gun unit. Patton wanted to apply the thought that if they were to die, they should die advancing, but suddenly he was overwhelmed by an incredible fear. His entire body went numb, and he felt paralyzed as if having a panic attack. In an instant, the legacy and grandeur of his ancestors flashed in his mind, and he embraced death and fear. Perhaps he owed his future world-changing victories to the actions and words he was about to take and say.

“… I suggest that you reconsider your life and bring your actions under this light… Without falling into regret, sorrow, or anxiety, focus your attention on the connection between yourself and your own death. Concentrate on the fact that you don’t have much time and let your actions flow accordingly. Let every action be as if it were your last battle in this world. Only under these conditions will your actions have the necessary strength. Otherwise, for as long as you live, your actions will be those of a coward."

— Journey to Ixtlan: The Lessons of Don Juan, Carlos Castaneda, 1972

Battle of New Orleans, War of 1812 and the Civil War / Source: https://stephenambrosetours

“It’s time for another Patton to die!” he shouted, reigniting the flame of courage in the hearts of the soldiers who would follow him. Leading the charge against the German fire, Patton’s leadership was crucial for his soldiers to resist the enemy and continue advancing. However, during the battle, Patton was shot. One of the bullets pierced his leg. When they tried to carry him to safety on a stretcher, Patton stubbornly got up and insisted on staying with his soldiers. This determination inspired his unit. In the tough struggle in the Argonne Forest, Patton’s courage and leadership played a significant role in the advance of the American forces. Despite his wounds, he continued to stay with his soldiers, providing them with the morale they needed to fight. Even after becoming a general, he frequently visited the front lines and the firing line. He repeatedly tested both his courage and himself. Over time, each test diminished his fear, allowing him to fight more strongly with each battle.

“No one else can be your savior but yourself!"

— Wilhelm Reich

World War I (1914–1918), Source: https://www.brainscape.com/

Usage of This Principle in Cybersecurity Leadership:

Patton Jr.’s approach to confronting his fears and continuously testing himself made him ready, respected, and strong in every future battle. When leading in cybersecurity, it is crucial to inspire the talented people in your team and make them feel secure under your command. Unlike Patton’s situation, you don’t need to experience continuous incidents to face your fears. You can achieve this step by step through certification programs, training, and self-imposed challenges. In cybersecurity, you cannot apply the adage ‘You don’t need to know everything technically’ as in other leadership roles. A strong and technical team will propel you forward, but since you are the one setting the course, you must make the right decisions and steer the ship in the right direction. For this, you must have a thorough understanding of the ocean you are navigating, knowing both its surface and its depths. Decisions made on the surface will be shaped by your leadership skills and management strategies, while decisions made in the depths will rely on your technical competencies and skills. Otherwise, no matter how great a course and journey you plan, if you don’t master the depths, you could run your ship aground or drift into stormy waters.

Alexander fighting a lion mosaic. Public Domain. Courtesy of Wikipedia.

“I’m not afraid of an army of lions led by a sheep; I am afraid of an army of sheep led by a lion.”

Alexander the Great

Most great leaders share the same qualities; Hannibal of Carthage, Mustafa Kemal Atatürk, and Napoleon Bonaparte are the main representatives of this principle. Hannibal’s courage and determination serve as a significant example of military leadership. His relentless pursuit of his goals despite great difficulties made him one of the greatest commanders in history. At the same time, he placed great importance on the training of his soldiers. He trained them under harsh conditions and did everything in his power to ensure their success on the battlefield.

“We will either find a way, or make one!”

— Hannibal of Carthage

Atatürk was also innovative and forward-thinking in military strategy and tactics. By making flexible and quick decisions on the battlefield, he identified the enemy’s weak points and delivered effective and powerful strikes to those areas. During the Gallipoli Campaign, his agility and clear decisions allowed him to defeat Ian Hamilton and General Frederick Stopford’s traditional and cautious approach despite having half the army and fewer resources, thereby changing the course of history. Atatürk was also known for his leadership skills and determination. Even in difficult situations, he maintained high morale and inspired his soldiers. For him, leadership required both unwavering courage and systematic strategic thinking. Atatürk idolized Hannibal of Carthage. As you know, one of Hannibal’s most famous military achievements was crossing the Alps to attack Rome. This bold and unexpected move shocked the Romans and gave him a strategic advantage. During this journey, he faced great challenges, but through his determination and leadership skills, he successfully led his army across the Alps.

“The greatest strength of the human spirit is willpower.”

— Hannibal of Carthage

Atatürk also managed to hold off Hammersley’s 20,000-strong troops for days with only a few artillery pieces at Gallipoli. He anticipated his opponent’s next move towards Tekke Tepe and positioned his forces there 30 minutes before them. With this strategic maneuver, he captured the area around Suvla within a few days, blockading Hamilton’s troops on the beach. At the end of four months, Britain retreated and ended the landing operation.

Mustafa Kemal Atatürk, Gallipolli / Souce: https://avim.org.tr/

“Victory belongs to those who can say, ‘Victory is mine.’”

— Mustafa Kemal Atatürk

Notes:

  • Fight alongside your team!
  • Make your team feel secure and always develop your technical skills!
  • Leadership in cybersecurity is not like other IT branches; your technical skills need to be top-notch and capable of guiding the team. Moreover, you should be open to development in multidisciplinary areas, including military and psychological fields.

Do Not Concentrate Your Forces in One Point!

Napoleon Bonapart — The Battle of Ulm on 16–19 October 1805

After the Battle of Marengo, the uneasy peace that lasted for five years was about to be broken. This forced peace began to unravel as Napoleon declared himself Emperor of the French, prompting the European nations to mobilize once again. At that time, the bold Austrian General Karl Mack, who had extensively studied Napoleon, wanted to mobilize the army and, in a sense, avenge Marengo by declaring war on France. By April 1805, the General had started to implement this plan step by step within the army and administration, and also signed agreements with England and Russia to declare war on France. If they could execute their plans and move their soldiers as desired during the summer, they would be positioned against Napoleon with nearly 500,000 troops, forming the largest army ever assembled in Europe.

Erwin Rommel, Source: Wikipedia

“Sweat saves blood, blood saves lives, and brains save both.”

— Generalfeldmarschall Erwin Rommel

In mid-September, Mack advanced towards the Ulm River and set up camp, completing his maneuver. He breathed a sigh of relief, confident that the operation he had planned for years would proceed brilliantly. According to Mack, Napoleon’s main strategy was to force his enemy to divide their forces. However, Mack’s strategy aimed to create problems for Napoleon both in Italy and at Ulm. Consequently, Napoleon would be unable to send too many troops beyond the Rhine to Germany and Bavaria. Even if he did, the Austrians beyond the Rhine would understand his intent and try to halt his advance. Moreover, it would take his army two months to reach the Danube. By then, the Russian and Austrian armies would have united and would destroy France. Everything was planned! But commanders like Napoleon and Atatürk loved to thwart plans.

Jacques-Louis DavidLe Sacre de Napoléon / Source : Wikipedia

“No battle plan survives contact with the enemy.”

— Napoleone Bonaparte

In September, while waiting for the Russians, General Mack encountered a problem in the Black Forest region between his camp and France. His reconnaissance units reported that the French army was approaching through the forest, a narrow and challenging path that led directly towards Mack’s forces. Mack had expected Napoleon to advance eastward across the Rhine and enter northern Germany, where the passage was easier. After the panic set in, Mack decided to hold his position and wait for the Russians but also sent part of his army to the Black Forest. However, a few days later, information arrived that the French forces had advanced further through the Black Forest. At the same time, an army was approaching from the north, with some reports indicating they were coming through Stuttgart. Sending reconnaissance units north was impossible due to the advancing army from the Black Forest, leaving him blind to his surroundings. This uncertainty was driving him mad. Unable to endure it any longer, he began withdrawing all his troops to Ulm. Then another reconnaissance unit reported that the French had crossed the Danube and positioned themselves east of Ulm. This news was shocking because, with this move, Napoleon blocked Mack’s return to Austria and cut off the Russians. Additionally, reports from the south indicated that there were also units on the road to Italy. Mack was in a complete blockade. No army in the world could deploy this quickly.

Ulysses S. Grant / Source: https://www.history.com/

”Labor disgraces no man; unfortunately, you occasionally find men who disgrace labor.”

— Ulysses S. Grant

The latest reports to Mack indicated that a small French unit was blocking the road to the north. He prepared to break through this line and retreat. But suddenly, information came that this small force was actually a massive army. Moreover, the Russians had abandoned their plan to come to his aid. Mack surrendered…

More than 70,000 soldiers were captured without drawing their swords or even loading their rifles. It was an unprecedented event of this magnitude… After this incident, Mack lost his mind.

Usage of This Principle in Cybersecurity Leadership:

Sometimes, while maintaining our defense line, we tend to focus on a single point. This can cause us to concentrate on a particular topic or technology. However, we must always think broadly and act quickly. This principle is also very relevant in the incident response process. During an incident, we should not focus on a single point. We should divide our responders and have them explore alternative attack vectors. Moving as a whole will significantly slow us down and unbalance our strength by reducing our effort on an individual basis. Therefore, we must divide and act against attacks according to a common plan. When needed, this division allows incident responders to analyze and investigate MITRE TTPs or LM Kill Chain steps through small teams. This increases the likelihood of capturing clues while trying to make sense of the entire incident.

“Lead me, follow me, or get out of my way.”

— General George S. Patton

When applying the Parameter Defense strategy, we must also use the same distributions. While emphasizing one point, we should not overlook other points, and at the same time, we should ensure an equal distribution without disrupting the benefit/cost axis. Just like Napoleon managed his troops, we should apply all our moves in a planned manner with variable scales but without skipping any.

I Ching (Book of Changes, Yi Jing)

“…Determination is bound to being cautious in a resolved manner. If a person is careful and keeps their wits about them, there is no need for excitement or panic. If they are always cautious even when there is no apparent danger, they are sufficiently armed when danger arises and have no reason to fear. A superior person prepares their defense against what is not yet visible and remains vigilant against what is not yet heard; therefore, they can stand as if nothing is wrong even in the midst of difficulties…”

— The I Ching (Yijing)

In this passage from the Yijing, General Mack did the exact opposite of the teachings mentioned, while Napoleon applied the same principles with full confidence.

This concludes the first part of my article series. I hope it has been thought-provoking and mind-stirring for you. By correctly analyzing history and examining the lives and events that have taken place, you will see that all of humanity continuously pursues common anxieties, hopes, joys, and wars. This principle will expand your horizons and guide you in your decisions. History does not repeat or replicate; the quest for meaning and existence by humankind is experienced generation after generation, changing its costume each time.

One of the most important footnotes of this section is this: Whether you are leading a team of two, including yourself, or an entire country, the most crucial point for a leader is to lead the people beside them by their presence, not by their numbers. Napoleon, Atatürk, Hannibal of Carthage, Alexander the Great, and Patton Jr. all adopted this philosophy. They all stayed close to their soldiers in their armies, were wounded in battles, and, when necessary, took the front line.

SIGMA — You cannot ensure that your team listens to you, remains loyal, and does not let you down through fear and distance. The strongest bond a leader can establish with their team is respect and love. In a potential crisis, fear leads to mistakes and lies, distance leads to escape and disloyalty, while love prevents abandonment and causes dedication, and respect leads to loyalty and faithfulness.

Napoleon believed that an effective leader should be someone who can give hope, show determination, and maintain high morale even in difficult situations. He thought that a leader should inspire their soldiers and earn their respect. Napoleon argued that morale in war is more important than physical strength and believed that keeping soldiers motivated and valuing them is critical for victory. To boost their morale, he would distribute rewards and medals, trying to earn their loyalty.

Napoleon Bonaparte / Source: Wikipedia

“In war, the moral is to the physical as three is to one.”

— Napoleon Bonaparte

Patton Jr. also frequently spoke to his soldiers and gave encouraging speeches to keep their morale high. By showing his trust and belief in them, he increased their fighting spirit.

Speaking of determination, we must never forget Hannibal of Carthage. His determination brought Rome to its knees. Hannibal’s courage and resolve persisted despite great difficulties until he achieved his goal. This passion made him one of the greatest commanders in history.

See you in the next article of the series…

“Labor disgraces no man; unfortunately, you occasionally find men who disgrace labor.”

— Ulysses S. Grant

Resource Books:

--

--

Alican Kiraz

Head of Cyber Defense Center | CSIE | CSAE | CCISO | CASP+ | OSCP | eCIR | CPENT | eWPTXv2 | eCDFP | eCTHPv2 | OSWP | CEH Master | Pentest+ | CySA+ and more...