Cybersecurity – Security Operations Center
Cybersecurity – Security Operations Center

Author(s): Pedro Fale, Leonilde Reis, Rui Almeida
Subject(s): Social Sciences
Published by: Udruženje ekonomista i menadžera Balkana
Keywords: Cybersecurity; SOC; Cybersecurity threats; Incident response; Incident control
Summary/Abstract: Currently, most organizations are dependent on Information and Communication Technologies, in the sense of accomplishing their underlying business activities. In this scope, cybersecurity is considered the domain that has the strength to protect sensitive information, be it at the individual level or in an organizational context. The objective of this paper is to introduce the concept, relevance, and functions of a Security Operations Centre. The methodology underlying the study was based on the use of the MITRE Adversarial Tactics, Techniques and Common Knowledge framework as a matrix of tactics and techniques based on real scenario observations. The main results emphasize the importance of incorporating the Security Operations Center as a barrier against cybersecurity threats. Security Operations Center brings additional value to the organizational context, through people, processes and technologies while also using several frameworks to improve work management, incident response and incident control.

• Details
• Contents