Pedro Falé – Instituto Politécnico de Setúbal, Setúbal – Portugal
Leonilde Reis – Instituto Politécnico de Setúbal, Setúbal – Portugal
Rui Almeida – Cybersafe Lda, Alfragide-Portugal
Keywords:
Cybersecurity;
SOC;
Cybersecurity threats;
Incident response;
Incident control
Abstract: Currently, most organizations are dependent on Information and Communication Technologies, in the sense of accomplishing their underlying business activities. In this scope, cybersecurity is considered the domain that has the strength to protect sensitive information, be it at the individual level or in an organizational context. The objective of this paper is to introduce the concept, relevance, and functions of a Security Operations Centre. The methodology underlying the study was based on the use of the MITRE Adversarial Tactics, Techniques and Common Knowledge framework as a matrix of tactics and techniques based on real scenario observations. The main results emphasize the importance of incorporating the Security Operations Center as a barrier against cybersecurity threats. Security Operations Center brings additional value to the organizational context, through people, processes and technologies while also using several frameworks to improve work management, incident response and incident control.
6th International Scientific Conference on Recent Advances in Information Technology, Tourism, Economics, Management and Agriculture – ITEMA 2022 – Conference Proceedings, Hybrid (University of Maribor, Slovenia), October 27, 2022
ITEMA Conference Proceedings published by: Association of Economists and Managers of the Balkans – Belgrade, Serbia
ITEMA conference partners: Faculty of Economics and Business, University of Maribor, Slovenia; Faculty of Organization and Informatics, University of Zagreb, Varaždin; Faculty of Geography, University of Belgrade, Serbia; Institute of Marketing, Poznan University of Economics and Business, Poland; Faculty of Agriculture, Banat’s University of Agricultural Sciences and Veterinary Medicine ”King Michael I of Romania”, Romania
ITEMA Conference 2022 Conference Proceedings: ISBN 978-86-80194-63-9, ISSN 2683-5991, DOI: https://doi.org/10.31410/ITEMA.2022
Creative Commons Non Commercial CC BY-NC: This article is distributed under the terms of the Creative Commons Attribution-Non-Commercial 4.0 License (https://creativecommons.org/licenses/by-nc/4.0/) which permits non-commercial use, reproduction and distribution of the work without further permission.
Suggested citation
Falé, P., Reis, L., & Almeida, R. (2022). Cybersecurity – Security Operations Center. In V. Bevanda (Ed.), International Scientific Conference ITEMA 2022: Vol 6. Conference Proceedings (pp. 99-103). Association of Economists and Managers of the Balkans. https://doi.org/10.31410/ITEMA.2022.99
References
Cisco (2022). What Is Cybersecurity?
https://www.cisco.com/c/en/us/products/security/what-is-cybersecurity.html
CNCS (2022). CERT.PT: Centro Nacional de Cibersegurança Portugal. CERT.PT:
https://www.cncs.gov.pt/pt/certpt/
Falé, P. (2022). Cybersecurity – Security Operations Center. Relatório de estágio de licenciatura, Instituto Politécnico de Setúbal.
IBM (2022). What is cybersecurity? https://www.ibm.com/topics/cybersecurity
ISO/IEC 27002:2013 (2013). Information Technology – Security techniques – Code of practice for information security controls.
Microsoft. (2022). O que é a cibersegurança?
Morgan, S. (2021). Cybersecurity Jobs Report: 3.5 Million Openings In 2025
https://cybersecurityventures.com/jobs/
Reis, L., Cagica Carvalho, L., Silveira, C., Marques, A., & Russo, N. (2021). Inovação e Sustentabilidade em TIC. Silabo.
Russo, N., & Reis, L. (2020). Certificação de Programas de Faturação – Guia para a Continuidade de Negócio. FCA.
Splunk. (2022). What Is a Security Operations Center (SOC)?
https://www.splunk.com/en_us/data-insider/what-is-a-security-operations-center.html
