SecOps

Security Operations is a collaboration between IT security and operations teams that integrates tools, processes, and technology to keep an enterprise secure while reducing risk.                            

 SECOPS

AGENDA

5. Why do we need SECOPS?
5. What is Secops?
5. Benefits of implementing secops
5. Goals of Secops
6. Secops Tools
5. What does a Secops center do?
5. Key Roles on a Secops team
5. Secops in the cloud
5. How does secops work in service now

Why do we need SECOPS?

• Shortage of talent in system security
• Security is not a priority
• Innovation has outpaced security

What is SecOps?

• SecOps is a methodology that IT managers implement to enhance the connection, collaboration and communication between IT security and IT operation working teams.

 Benefits of implements SecOps:

• Information and Communication are Integrated
• Priorities Unite
• Tools and Technology amalgamate
• IT operations can be Streamlined
• Security is Proactive

 Goal of SecOps:

• Development Timelines
• Application Uptime
• Performance Requirements

SecOps Tools:

1. Alerting Tools

• FourOneOne
• alerta
• ElastAlert

2. Automation Tools

• StackStorm

3. Visualization

• GP Gephi

4. Threat Intelligence

• criticalstack // Intel Feed

• RISKIQ
• OpenTPX

5. Testing Tools

• BRAKEMANPRO
• IRONWASP

Key-Roles in a SecOps Team:

• Incident Responder
• Security Investigator
• Advanced Security Analyst
• SOC Manager
• Security Engineer/Architect

 SecOps in the Cloud:

• Execute
• Establish
• Build
• Remove
• Extend
• Replace