Enhancing Collaboration Between Security Analysts in Security Operations Centers

被引：3

作者：

Cremilleux, Damien ^{[1
]}

Bidan, Christophe ^{[1
]}

Majorczyk, Fredeic ^{[1
,2
]}

Prigent, Nicolas ^{[3
]}

机构：

[1] Cent Supelec, Rennes, France

[2] DGA MI, Bruz, France

[3] LSTI, St Malo, France

来源：

RISKS AND SECURITY OF INTERNET AND SYSTEMS | 2019年 / 11391卷

关键词：

Security and privacy; Intrusion detection systems; Network security; Collaboration; Security Operations Center;

D O I：

10.1007/978-3-030-12143-3_12

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Security Operations Centers (SOCs) collect data related to the information systems they protect and process it to detect suspicious activities. In this paper we explain how a SOC is organized, we highlight the current limitations of SOCs and their consequences regarding the performance of the detection service. We propose a new collaboration process to enhance the cooperation between security analysts in order to quickly process security events and define a better workflow that enables them to efficiently exchange feedback. Finally, we design a prototype corresponding to this new model.

引用

页码：136 / 142

页数：7

共 50 条

[21] Examining the Efficacy of Commercial Cyber Security Certifications for Information Security Analysts
Jarocki, Samuel
Kettani, Houssain
2019 4TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS ENGINEERING (ICISE 2019), 2019, : 1 - 5
[22] Intelligent surveillance empowers security analysts
Krikke, J
IEEE INTELLIGENT SYSTEMS, 2006, 21 (03) : 102 - 104
[23] REPUTATION AND PERFORMANCE AMONG SECURITY ANALYSTS
STICKEL, SE
JOURNAL OF FINANCE, 1992, 47 (05): : 1811 - 1836
[24] Do German security analysts herd?
Naujoks, Marcel
Aretz, Kevin
Kerl, Alexander G.
Walter, Andreas
FINANCIAL MARKETS AND PORTFOLIO MANAGEMENT, 2009, 23 (01) : 3 - 29
[25] Expertise in forecasting performance of security analysts
Jacob, J
Lys, TZ
Neale, MA
JOURNAL OF ACCOUNTING & ECONOMICS, 1999, 28 (01): : 51 - 82
[26] A NOTE ON THE EFFECTIVENESS OF SECURITY ANALYSTS FORECASTS
GUERARD, JB
STONE, BK
HANSEN, G
EUROPEAN JOURNAL OF OPERATIONAL RESEARCH, 1991, 50 (01) : 19 - 21
[27] Do German security analysts herd?
Marcel Naujoks
Kevin Aretz
Alexander G. Kerl
Andreas Walter
Financial Markets and Portfolio Management, 2009, 23 (1): : 3 - 29
[28] Virtual reality for improving cyber situational awareness in security operations centers
Munsinger, Brita
Beebe, Nicole
Richardson, Turquoise
COMPUTERS & SECURITY, 2023, 132
[29] Do Security Analysts Reduce Noise?
Schutte, Maria
Unlu, Emre
FINANCIAL ANALYSTS JOURNAL, 2009, 65 (03) : 40 - 54
[30] Information Security Considerations for Protecting NASA Mission Operations Centers (MOCs)
Takamura, Eduardo
Mangum, Kevin
Wasiak, Fran
Gomez-Rosa, Carlos
2015 IEEE AEROSPACE CONFERENCE, 2015,

← 1 2 3 4 5 →