Challenges towards building an effective cyber security operations centre

Onwubiko, Cyril and Ouazzane, Karim (2019) Challenges towards building an effective cyber security operations centre. International Journal on Computational Science & Applications, 4 (1). pp. 11-39. ISSN 2200-0011


The increasing dependency of modern society on IT systems and infrastructures for essential services (e.g. internet banking, vehicular network, health-IT, etc.) coupled with the growing number of cyber incidents and security vulnerabilities have made cyber security operations centre (CSOC) undoubtedly vital. As such security operations monitoring is now an integral part of most business operations. SOCs (used interchangeably as CSOCs) are responsible for continuously and protectively monitoring business services, IT systems and infrastructures to identify vulnerabilities, detect cyber-attacks, security breaches, policy violations, and to respond to cyber incidents swiftly. They must also ensure that security events and alerts are triaged and analysed, while coordinating and managing cyber incidents to resolution. Unfortunately, the effectiveness f SOCs are a widespread concern and a focus of boundless debate. In this paper, we identify and discuss some of the pertinent challenges to building an effective SOC. Further, we provide and prioritise recommendations to addressing the identified issues.

IJCSA-Journal-Challenges towards building an effective CSOC v0.8_21st-September_repository.pdf - Accepted Version
Available under License Creative Commons Attribution Non-commercial No Derivatives 4.0.

Download (1MB) | Preview


Downloads per month over past year

Downloads each year

Available Versions of this Item

  • Challenges towards building an effective cyber security operations centre. (deposited 11 Nov 2019 08:53) [Currently Displayed]
View Item View Item