- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
Cybersecurity Operations and Fusion Centers: A Comprehensive Guide to SOC and TIC Strategy by Dr. Kevin Lynn McLaughlin is a must-have resource for anyone involved in the establishment and operation of a Cybersecurity Operations and Fusion Center (SOFC). Think of a combination cybersecurity SOC and cybersecurity Threat Intelligence Center (TIC). In this book, Dr. McLaughlin, who is a well-respected cybersecurity expert, provides a comprehensive guide to the critical importance of having an SOFC and the various options available to organizations to either build one from scratch or purchase a ready-made solution. The author takes the reader through the crucial steps of designing an SOFC model, offering expert advice on selecting the right partner, allocating resources, and building a strong and effective team. The book also provides an in-depth exploration of the design and implementation of the SOFC infrastructure and toolset, including the use of virtual tools, the physical security of the SOFC, and the impact of COVID-19 on remote workforce operations. A bit of gamification is described in the book as a way to motivate and maintain teams of high-performing and well-trained cybersecurity professionals.
The day-to-day operations of an SOFC are also thoroughly examined, including the monitoring and detection process, security operations (SecOps), and incident response and remediation. The book highlights the significance of effective reporting in driving improvements in an organization's security posture.
With its comprehensive analysis of all aspects of the SOFC, from team building to incident response, this book is an invaluable resource for anyone looking to establish and operate a successful SOFC. Whether you are a security analyst, senior analyst, or executive, this book will provide you with the necessary insights and strategies to ensure maximum performance and long-term success for your SOFC. By having this book as your guide, you can rest assured that you have the knowledge and skills necessary to protect an organization's data, assets, and operations.
Contents
Part I. Building and Deployment, 1. What Is a Cybersecurity Operations and Fusion Center (SOFC) and Why Do You Need One?, 2. Designing the SOFC Model, 3. SOFC: Building the Core Team, Part II. Tools and Operations, 4. SOFC Infrastructure and Toolset, 5. Cybersecurity Operations and Fusion Center: Daily Operations, 6. Foundations of Security Operations or SecOps, 7. Detection, Response, and Remediation, Part III. Reporting and Metrics, 8. SOFC Reporting, 9. SOFC Metrics, Part IV. Leadership Alignment and Support, 10. SOFC Alignment and Support, 11. Key Components of a Turnkey SOFC, 12. Conclusion
