Loading...
Publication
INTEGRATED PLATFORM FOR INCIDENT RESPONSE
| Name: | Description: | Size: | Format: | |
|---|---|---|---|---|
| 5.13 MB | Adobe PDF |
Advisor(s)
Abstract(s)
Incident Response (IR) is a critical component of information security management,
as it enables organizations to effectively detect, respond to, and recover from
security incidents. A Security Operations Center (SOC) is a key component of
incident response, as it is responsible for monitoring and managing the security of
an organization’s systems and data.
However, Small and Medium Enterprise (SMEs) often face significant challenges
in implementing effective incident response, due to a lack of resources and expertise.
These challenges include limited budgets, a lack of dedicated security personnel,
and a lack of understanding of the risks and threats facing the organization.
This project aims to explore the challenges faced by SMEs in implementing
effective incident response, with a specific focus on the role of the SOC in incident
response.
It will mainly consist on the development of a integrated platform, composed
only by open source tools, that can be used to step up the security awareness of
SMEs. It will also propose recommendations on how to implement effective incident
response, including the development of a SOC, the use of security automation tools,
and the implementation of some modern SOC practices.
Overall, this project shall provide valuable insights into the challenges faced by
SMEs in implementing effective incident response, and will provide practical guidance
for SMEs on how to implement effective incident response in their organizations,
focusing on the role of the SOC and the use of security automation tools.
Description
Keywords
Cibersegurança Engenharia informática Security Information Center Empresas Gestão de empresas Ferramentas de automação de segurança