Title :
Classification of Security Operation Centers
Author :
Jacobs, Patricia ; Arnab, Alapan ; Irwin, Barry
Author_Institution :
Dept. of Comput. Sci., Rhodes Univ., Grahamstown, South Africa
Abstract :
Security Operation Centers (SOCs) are a necessary service for organisations that want to address compliance and threat management. While there are frameworks in existence that addresses the technology aspects of these services, a holistic framework addressing processes, staffing and technology currently do not exist. Additionally, it would be useful for organizations and constituents considering building, buying or selling these services to measure the effectiveness and maturity of the provided services. In this paper, we propose a classification and rating scheme for SOC services, evaluating both the capabilities and the maturity of the services offered.
Keywords :
pattern classification; security; SOC service classification scheme; SOC service rating scheme; compliance management; security operation center classification; service capability evaluation; service maturity evaluation; technology aspects; threat management; Capability maturity model; Coordinate measuring machines; Monitoring; Organizations; Process control; Security; System-on-chip; Computer Incident Response Team; Security Operations Center; classification matrix; maturity model;
Conference_Titel :
Information Security for South Africa, 2013
Conference_Location :
Johannesburg
DOI :
10.1109/ISSA.2013.6641054
