Posts tagged SOC

6-month SOC project in Topeka beginning 7 Dec 2009

Nov 11th

Posted by Tokwear in Security Jobs

Alchemy Security is hiring! They need a consultant who has significant experience running Security Operations Consulting teams to help them build a SIEM/IDS analysis group in Topeka. This is a 6-month project beginning December 7. The right candidate has 5+ years of experience with IDS, SIEM, project management (preferably Scrum/Agile) and supervision of IDS analysts.

, , ,

Security Operation Center (SOC) Framework – Setting up SOC

Oct 27th

Posted by Tokwear in IT Security

1)      Security Information and Event Management (SIEM) Event Monitoring Event Identification Alert Generation 2)      Security Device Management Problem Management Change Management Incident Management Configuration Management Performance Management – co exist with NOC 3)      Security Incident Management Incident Analysis Response Post Incident Activity 4)      Vulnerability Management Vulnerabilities Monitoring Remediation Planning Security Patch Management Advisory Services 5)     

, ,

Security Operation Center (SOC) vs Network Operation Center (NOC)

Oct 24th

Posted by Tokwear in IT Security

Why we should separate the function and operation of SOC and NOC? In summary we can say that:- •Work is tremendously different • Separation of duties • Actions at time of contingency But can we say that both SOC and NOC can be used to compliment each other? The integration of the SOC and NOC allows organizations to quickly

,

Security Operation Center – Motivation

Oct 22nd

Posted by Tokwear in IT Security

I’ve been in Security Operation Center (SOC) business for almost 6 years, so if you ask me what is the actual motive for building up a SOC (multi million project)? I would say:- 1) Regulation •SOX & PCI • Incident response requirements • Incident forensic & Archival requirements 2) Profitibility •OPEX reduction •Efficient capital utilization •Ability to

,

Security Operation Center – Why we need one?

Oct 22nd

Posted by Tokwear in IT Security

1) Security Information Overload: Managing security events in today’s corporate environment poses a series of challenges for beleaguered IT personnel and their organizations. A daily onslaught of security data from disparate systems, platforms and applications delivers the first challenge. Numerous point solutions such as antivirus software, firewalls, intrusion prevention systems, intrusion detection, access control, identity

, ,