Title | ||
---|---|---|
Cyber security operations centre: Security monitoring for protecting business and supporting cyber defense strategy |
Abstract | ||
---|---|---|
Cyber security operations centre (CSOC) is an essential business control aimed to protect ICT systems and support an organisation's Cyber Defense Strategy. Its overarching purpose is to ensure that incidents are identified and managed to resolution swiftly, and to maintain safe & secure business operations and services for the organisation. A CSOC framework is proposed comprising Log Collection, Analysis, Incident Response, Reporting, Personnel and Continuous Monitoring. Further, a Cyber Defense Strategy, supported by the CSOC framework, is discussed. Overlaid atop the strategy is the well-known Her Majesty's Government (HMG) Protective Monitoring Controls (PMCs). Finally, the difficulty and benefits of operating a CSOC are explained. |
Year | DOI | Venue |
---|---|---|
2015 | 10.1109/CyberSA.2015.7166125 | CyberSA |
Keywords | Field | DocType |
Cyber Security Operations Centre, CSOC, SOC, Cyber Incident Response, Cyber Situational Awareness, CyberSA, Log Source, Analysis, Correlation, Risk Management, CSOC Strategy, CSOC Benefits & Challenges | Incident response,Business operations,Computer security,Security monitoring,Risk management,Information and Communications Technology,Cyber defense,Engineering,Government | Conference |
Citations | PageRank | References |
7 | 1.32 | 0 |
Authors | ||
1 |
Name | Order | Citations | PageRank |
---|---|---|---|
Cyril Onwubiko | 1 | 23 | 4.32 |