Enhancing Collaboration Between Security Analysts in Security Operations Centers

机译：加强安全运营中心安全分析师之间的协作

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Security Operations Centers (SOCs) collect data related to the information systems they protect and process it to detect suspicious activities. In this paper we explain how a SOC is organized, we highlight the current limitations of SOCs and their consequences regarding the performance of the detection service. We propose a new collaboration process to enhance the cooperation between security analysts in order to quickly process security events and define a better workflow that enables them to efficiently exchange feedback. Finally, we design a prototype corresponding to this new model.

机译：安全运营中心（SOC）收集与他们保护的信息系统相关的数据，并处理它以检测可疑活动。在本文中，我们解释了SOC如何组织，我们突出了SOC的当前限制及其关于检测服务性能的后果。我们提出了一种新的协作过程，以提高安全分析师之间的合作，以便快速处理安全事件并定义更好的工作流，使其能够有效地交换反馈。最后，我们设计了对应于此新模型的原型。

著录项

来源
《International Conference on Risks and Security of Internet and Systems》|2019年|x 226 p. :|共7页
会议地点
作者
Damien Crémilleux; Christophe Bidan; Frédéic Majorczyk; Nicolas Prigent;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393-532;
关键词
Security and privacy; Intrusion detection systems; Network security; Collaboration; Security Operations Center;

机译：安全和隐私;入侵检测系统;网络安全;协作;安全运营中心;

相似文献

外文文献
中文文献
专利

1. Challenges and performance metrics for security operations center analysts: a systematic review [J] . Enoch Agyepong, Yulia Cherdantseva, Philipp Reinecke, Journal of Cyber Security Technology . 2020,第3期

机译：安全运营中心分析师的挑战和绩效指标：系统评价
2. Optimal Assignment of Sensors to Analysts in a Cybersecurity Operations Center [J] . Shah Ankit, Ganesan Rajesh, Jajodia Sushil, IEEE systems journal . 2019,第1期

机译：在网络安全运营中心中，将传感器最佳地分配给分析人员
3. Operational security, threat intelligence & distributed computing: the WLCG Security Operations Center Working Group [J] . David Crooks, Liviu Valsan, Kashif Mohammad, EPJ Web of Conferences . 2019,第1期

机译：运营安全，威胁情报和分布式计算：WLCG安全运营中心工作组
4. Enhancing Collaboration Between Security Analysts in Security Operations Centers [C] . Damien Crémilleux, Christophe Bidan, Frédéic Majorczyk, International Conference on Risks and Security of Internet and Systems . 2019

机译：加强安全运营中心安全分析师之间的协作
5. Analyst Burnout in the Cyber Security Operation Center - CSOC: A Phenomenological Study [D] . Hull, James L. 2017

机译：网络安全运营中心的分析员倦怠-现象学研究
6. Eight Years of Collaboration on Biosafety and Biosecurity Issues Between Kazakhstan and Germany as Part of the German Biosecurity Programme and the G7 Global Partnership Against the Spread of Weapons and Materials of Mass Destruction [O] . Lukas Peintner, Edith Wagner, Anna Shin, 2021

机译：哈萨克斯坦与德国之间的生物安全和生物安全问题八年作为德国生物安全计划的一部分以及旨在对武器和大规模杀伤材料的蔓延的G7全球伙伴关系
7. Operational security, threat intelligence distributed computing: the WLCG Security Operations Center Working Group [O] . David Crooks, Liviu Vâlsan, Kashif Mohammad, 2019

机译：运营安全，威胁情报和分布式计算：WLCG安全运营中心工作组

Enhancing Collaboration Between Security Analysts in Security Operations Centers

摘要

著录项

相似文献

相关主题

期刊订阅