At the first ever Security Day at TNC19 earlier this year, SOC (Security Operations Centre) was probably the most frequently used acronym in the discussions. What do our constituents mean when they say that they need a SOC? Do all NRENs need a SOC? What are the most common functions of a SOC and, most importantly, what are the tools that an NREN could use to fulfil the SOC functions?
One of the outcomes of the Security Day 2019 was an agreement that the R&E security community should put in more SOC related proposals for TNC and other conferences and perhaps even organise a SOC tools workshop. Given the great interest in this area and the fact that one of the GN4-3 Security work package tasks focuses on SOC tools, it was decided to organise a SOC tool Workshop for the NREN security experts.
The SOC Workshop 2019 will take place on 5-6 December in Amsterdam, hosted by GÉANT. The draft agenda and the logistical details are available on the following wiki page: https://wiki.geant.org/display/gn43wp8/Security+Operations+Tools+Workshop+2019
The event is aimed mainly for the NREN security professionals. It will be an open meeting with a collaborative workshop and presentations for security operations practitioners. The following topics will be covered:
- Analytics, Detection, Automation for leveraging staff.
- Architecture and performance handling for big log-sets and network speeds.
- Focus on showing work done by others and sharing experiences.
If you would like to attend in person or remotely, please register here: https://eventr.geant.org/events/3202
We look forward to welcoming you in Amsterdam at this collaborative and interactive workshop. Bring your own experience and be ready to share and learn.
For further information and details, please contact sigita.jurkynaite@geant.org