'RETHINKING CYBER SECURITY ONBOARDING' BY DR. CYRIL ONWUBIKO

Title: Rethinking Cyber Security Onboarding
Venue: Virtual Talk
Target: IEEE Kenya, East Africa & IEEE R8 YP
Date: 29th October 2020 | 16:00 EAT

Abstract

Most digital services are available to everyone and from anywhere, e.g. University websites, online banking, electronic commerce, etc. These services are susceptible to ever-increasing cyber-attacks. An approach to protecting digital services is to deploy preventative controls such as encryption, authentication, and access control mechanisms, but unfortunately, preventative controls alone are inadequate as the growing number of data breaches have shown. Digital services must be monitored in order that security breaches & intrusions are detected on time and appropriate responses provided to address the incident. One way of monitoring digital services, especially online web services is to onboard them to a Cyber Security Operations Centre for monitoring.

Cybersecurity operations centers (CSOCs) are responsible primarily for managing cyber incidents, in addition to cyber-attack detection, security monitoring, security incident triage, analysis, and coordination. To monitor systems, networks, applications, and services the CSOC must first on-board the systems and services onto their security monitoring and incident management platforms. Cyber Onboarding (a.k.a. Onboarding) is a specialist technical process of setting up and configuring systems and services to produce appropriate events, logs, and metrics that are monitored through the CSOC security monitoring and incident management platform.

In this talk, we will explain the various aspect of CSOC, the role of Cyber Onboarding, and most importantly, how efficient this can be achieve using cloud-native and cloud-enabled services.

Follow me on: