share

The challenges of running a modern Security Operations Centre

Posted by Rudy Mitra on Jul 17, 2019 8:45:00 AM
Rudy Mitra
Find me on:

The challenges of running a modern Security Operations Centre

You may have heard the term ‘security operations centre’ or ‘SOC’ before, but do you know what that is and how it can benefit your business?

A SOC can monitor all of your endpoints and network, identify potential and real incidents, and handle them in an efficient manner. But only if you set it up the right way and maintain it correctly. And there are some negatives to running your own SOC rather than outsourcing to an expert team, like our cyber security team here at The Missing Link, for example.

 

What are the challenges of running your own SOC?

It’s important to ensure that if you are looking to build your own SOC you must put the correct measures in place and have access to the right tools.

If you don’t have the right people, it just won’t work! There are very specific tasks that need to be undertaken, meaning people with the right skillsets and training can be hard to find. And once you find these unicorns, you need to ensure they stay up to date with the latest training so that they can continue to be effective.

Beyond people, defence is the next key factor – you should ensure teams are split out into detection and prevention to ensure you’re getting the right mix.

And of course, budget is a very important aspect. Some large businesses can, and do, run their own SOCs, but the cost of doing so and then properly maintaining it, is prohibitive to many smaller businesses.

 

What’s the alternative to having an in-house SOC?

If you don’t have the budget or resources to run your own SOC there are alternatives, such as using a commercial SOC like ours.

Here at The Missing Link, we have a state-of-the-art security operations centre in our Sydney office. We have invested heavily in the latest equipment and cutting-edge software, which we combine with one of the most certified security teams in Australia and approximately 100 experienced personnel.

This has resulted in an incredible, secure facility where business information systems (web sites, applications, data, databases, data centres and servers, networks, desktops and other endpoints) are monitored, assessed, and defended.

Businesses will be able to leverage our SOC’s security experts to help with strategic planning for best practice multi-cloud security, tactical day-to-day security monitoring, and threat analysis to deter, detect and respond to potential threats around the clock.

A total of 812 incidents were reported to the Office of the Australian Information Commissioner (OAIC) within one year of the notifiable data breach scheme coming into effect since February 2018. Our SOC has provided businesses with the breach-visibility and strategic planning they need for responding to potential threats with round-the-clock monitoring.   

Global companies like British Airways and Marriott, have recently felt the full weight of the European data protection guidelines (GDPR) after their respective database breaches, resulting in record fines of $329 million AUD and $176 million AUD respectively. Google too was found to be in breach in France and had to pay the equivalent of $80.71 million AUD in fines. Being one of the largest companies in the world, this is a relatively affordable fine for them, especially given the maximum penalty is 4% of global revenue.

If monitoring your business is important to you, we can help. Contact us today and start a conversation.

If you liked this article, you may also like:

Transforming the Financial Services Ecosystem with AI

Wagging the Dog: Abusing Resource-Based Constrained Delegation to Attack Active Directory

5 Defining Features of Effective IT Leaders

AUTHOR

Rudy Mitra

Digital Marketing Assistant

Resource

If your network future-proofed?

GRAB A COPY
UP NEXT

Kerberos delegation workshop at DEF CON 27

Last week our team returned from hacker summer cam...

SSL 101: what to do when SSL attacks are on the rise

Encryption. It’s something that many businesses ta...