Information security management in SOCs and SICs

被引：1

作者：

Miloslavskaya, Natalia ^{[1
]}

机构：

[1] Natl Res Nucl Univ MEPhI, Moscow Engn Phys Inst, 31 Kashirskoye Shosse, Moscow, Russia

来源：

JOURNAL OF INTELLIGENT & FUZZY SYSTEMS | 2018年 / 35卷 / 03期

关键词：

Information security; information security incident; information security management; Security Operations Center; Security Intelligence Center;

D O I：

10.3233/JIFS-169615

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

At present new sophisticated attacks make organizations' IT infrastructure (ITI) break-in more professional and dangerously effective. All organizations must oppose this properly designed and centralized information security (IS) management systems. Learn from the past helps to avoid the consequences of serious IS incidents in the future. Therefore, IS management is necessary for rapidly detecting IS incidents, minimizing loss and destruction caused by then, mitigating the vulnerabilities exploited and restoring organizations' ITIs. This process can be implemented based on Security Operations Centers (SOCs) and Security Intelligence Centers (SICs) as their next evolution step. SOCs' main functions and serious limitations are defined. The SICs' concept and functioning are analyzed. The main areas of further research conclude the paper.

引用

页码：2637 / 2647

页数：11

共 25 条

[11] Bidou R., 2005, Security operation center concepts & implementation
[12] Burnham J., WHAT IS SECURITY INT
[13] Cichonski P, 2012, COMPUTER SECURITY IN, V61, P1, DOI DOI 10.6028/NIST.SP.800-61R2
[14] Fry C., 2009, Security Monitoring: Proven Methods for Incident Detection on Enterprise Networks
[15] Hamilton M., 2014, CYBER DEFENSE MAGAZI, P41
[16] Hutchins E.M., 2013, Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains
[17] IBM Corporation, 2010, IT SEC COMPL MAN DES
[18] Insights on governance risk and compliance, 2014, SEC OP CTR HELP YOU
[19] SOC- and SIC-Based Information Security Monitoring
Miloslavskaya, Natalia
[J]. RECENT ADVANCES IN INFORMATION SYSTEMS AND TECHNOLOGIES, VOL 2, 2017, 570 : 364 - 374
[20] Information Security Maintenance Issues for Big Security-Related Data
Miloslavskaya, Natalia
Senatorov, Mikhail
Tolstoy, Alexander
Zapechnikov, Sergey
[J]. 2014 INTERNATIONAL CONFERENCE ON FUTURE INTERNET OF THINGS AND CLOUD (FICLOUD), 2014, : 361 - 366

← 1 2 3 →