This resource is no longer available
Best Practices for Building a Security Operations Center
The key to the Security Operations Center (SOC) is to provide situational awareness - a correlated picture of what is occurring right now in an enterprise. By pulling together information from a variety of devices then normalizing and correlating the information, the SOC provides real-time reporting on what is happening so that operators can manage and respond to intrusions before they put the organization at risk.
In this paper, we discuss the business and technical requirements that organizations must consider when implementing a SOC. Topics explored include:
- Reducing risk and downtime
- Threat control and prevention
- Easing administrative overhead
- Incident response and recovery
- Support of federated and distributed environments
- And much more
- CA Technologies.
- 27 Dec 2006
- 01 Aug 2006
- 9 Page(s)
- White Paper