SOC IMPLEMENTATION (INCLUDING SIEM SOLUTION)
1. Real-time threat intelligence & event monitoring
2. Insider threat detection and cloud discovery
3. Data exfiltration and protection against phishing attacks
4. Endpoint detection & response (EDR)
5. Automated security investigation
6. incident forensics (Network scans to identify anomalous communications)
7. Detect abnormal connection behavior (volume/time/geographic)
8. Detect rogue services and systems, Malware/ Worm propagation, etc.
9. DNS Attack (detect outbound requests to malicious sites, identify DNS trends and certificates)
2. Insider threat detection and cloud discovery
3. Data exfiltration and protection against phishing attacks
4. Endpoint detection & response (EDR)
5. Automated security investigation
6. incident forensics (Network scans to identify anomalous communications)
7. Detect abnormal connection behavior (volume/time/geographic)
8. Detect rogue services and systems, Malware/ Worm propagation, etc.
9. DNS Attack (detect outbound requests to malicious sites, identify DNS trends and certificates)
