Fri, 29 Mar 2024 Today's Paper

role of cyber security operations centres

By

8 December 2017 12:00 am - 0     - {{hitsCtrl.values.hits}}

A A A

In the day and age of sophisticated digital hackers, your concern shouldn’t be if you’re going to get hacked, but what you’re going to do when it happens.


Cyber security today is ubiquitous and enormously complex. Advanced cyber attacks have become so sophisticated that they can hardly be distinguished from normal events or system failures. While businesses learn to protect themselves better, criminals are simultaneously devising ever more sophisticated techniques to penetrate their security perimeters.


Attracted by the unprecedented financial rewards a cyber attack can deliver, increasing numbers of threat actors are actively seeking and targeting corporate security flaws. In response, Security Operations Centres (SOCs) are being established to combat security issues as they arise, and to provide a swift response and resolution. For this reason cyber security requires continued deep insight into systems. Enterprises and organizations are putting ever-stronger emphasis on their cyber security ecosystem, and with good reason. As digital and data and information assets continue to gain in strategic importance, cyber threats are also rising. Attackers and hackers have access to a wide variety of sophisticated technologies and techniques to breach an organisation’s defenses.


Consequently, cyber security is a crucial part of safely and successfully managing business, technology, processes, and people. Stakeholders are looking for reassurance that an organisation’s security posture matches its needs today and preferably tomorrow as well. There is a growing awareness that traditional approaches to safeguarding financial transactions, customer data, and confidential assets are no longer enough to protect against advanced cyber-attacks. The adoption of more modern defensive techniques has become mandatory. Using the right building blocks, including a suitable IT security platform and team, next generation security operations can be implemented to keep innocent parties safe and cyber criminals at bay.


Just like the companies themselves, every cyber security team is different. Companies that recognize the importance of information security will invest the necessary amount to ensure that their data and systems remain safe and that their SOC team has the resources necessary to deal with modern threats.


The cyber security operations centre roles and responsibilities are fairly straightforward, but distinct in their requirements. Investing in a cyber security operations centre (SOC) can be your saving grace during an attempted advanced cyber security attack. Cyber security is no longer just an IT problem, it’s an organisational issue. Find out if a cyber security operations centre is the ideal solution for securing an enterprise against modern sophisticated cyber threats. Further, a cyber security operations centre continually monitors a business’ cyber security, preventing serious breaches in real time. Many enterprises now find that expanding detection capabilities begins with setting up a Security Operations Centre (SOC), a virtual nerve center that coordinates a business’ information security functions.
Leaders with managerial and technical experience can aid in workflow management and provide security analyst training. Having a well integrated, easy-to-use case-management system that doesn’t get in the way of investigations and seamlessly interacts with other SOC tools is key. This tool ideally provides metrics on how effectively a SOC monitors, detects, and contains cases and will allow an organisation to identify gaps in people, processes, and technologies. Cyber incidents will happen, and every organisation should have proportionate incident response and management strategy, and incident readiness processes in place. Forensic readiness should be considered important and business requirements should focus on this.


The need for and relevance of a SOC has never been more pressing and pertinent. Cyber-crime and cyber-attacks are daily events that need to be defended against. An effective SOC provides considerable assurance and the ability to respond appropriately and effectively in the event of an attack. However, a SOC in isolation is futile, it needs to be viewed as a coherent package alongside IT and physical security, which are all mutually supporting; if one element is weak the overall security is fragile. Having properly trained, motivated and appropriately supervised personnel in each area is an essential element to the holistic security solution. In tandem, appropriate policies and well-practiced procedures will mean that timely and suitable responses can be enacted to mitigate the impact of all security incidents. Organisations are inundated with security information overload coming from disparate and often decentralised security systems operating in individual silos. To address these problems, organisations must carefully plan and deploy an SOC that centrally manages and monitors the network and security systems across a diverse IT environment. To be effective, the SOC demands the use of a comprehensive security information management (SIM) solution. Security information management tools offer a comprehensive security management and incident response platform designed to improve the effectiveness, efficiency, and visibility of security operations and information risk management.


Take the time to know your business needs and technical requirements for an SOC based on your security policies and network infrastructure. Armed with this information, you are well on your way to building not just an SOC that can help you contain or prevent incidents and generate audit and compliance reports but a proactive method to help achieve consistent network uptime and minimize security risks.

 


(Sanjee Balasuriya is the Managing Director and Chief Executive Officer of eCybersec (Pvt.) Ltd)


Order Gifts and Flowers to Sri Lanka. See Kapruka's top selling online shopping categories such as Toys, Grocery, Kids Toys, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,Astrology, Courier/Delivery, Medicine Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka

  Comments - 0

Order Gifts and Flowers to Sri Lanka. See Kapruka's top selling online shopping categories such as Toys, Grocery, Kids Toys, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,Astrology, Courier/Delivery, Medicine Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka

Add comment

Comments will be edited (grammar, spelling and slang) and authorized at the discretion of Daily Mirror online. The website also has the right not to publish selected comments.

Reply To:

Name - Reply Comment





Order Gifts and Flowers to Sri Lanka. See Kapruka's top selling online shopping categories such as Toys, Grocery, Kids Toys, Birthday Cakes, Fruits, Chocolates, Clothing and Electronics. Also see Kapruka's unique online services such as Money Remittence,Astrology, Courier/Delivery, Medicine Delivery and over 700 top brands. Also get products from Amazon & Ebay via Kapruka Gloabal Shop into Sri Lanka

VAT increase: SOUNDs death knell for publishers, readers

Though the Government imposed VAT (Value Added Tax) on vegetables and other e

How female change-makers are driving Sri Lanka’s energy saving platform

Saving energy has become more of a responsibility than a habit in today’s c

A dull Ramadan awaits Muslims amidst the Soaring Cost of Living

In the coming days, Muslims across the world will welcome the Holy Month of R

New wildlife underpass to curtail HEC

As of February 2024, Sri Lanka lost another 38 elephants as a result of the H