Establishing Security Operations Center
Couldn't load pickup availability
ISBN: 9789365896060
eISBN: 9789365897029
Authors: Sameer Vasant Kulkarni
Rights: Worldwide
Edition: 2025
Pages: 446
Dimension: 7.5*9.25 Inches
Book Type: Paperback
- Description
- table of content
- about the authors
Cyber threats are everywhere and constantly evolving. Data breaches, ransomware, and phishing have become everyday news. This book offers concepts and practical insights for setting up and managing a security operations center. You will understand why SOCs are essential in the current cyber landscape, how to build one from scratch, and how it helps organizations stay protected 24/7.
This book systematically covers the entire lifecycle of a SOC, beginning with cybersecurity fundamentals, the threat landscape, and the profound implications of cyber incidents. It will guide you through why SOCs are critical in today’s cyber landscape, how to build one from the ground up, tools, roles, and real-life examples from the industry. The handling of security incidents before they turn into threats can be effective through this book. The entire ecosystem of management of security operations is covered to effectively handle and mitigate them.
Upon completing this guide, you will possess a holistic understanding of SOC operations, equipped with the knowledge to strategically plan, implement, and continuously enhance your organization's cybersecurity posture, confidently navigating the complexities of modern digital defense. The book aims to empower the readers to take on the complexities of cybersecurity handling.
WHAT YOU WILL LEARN
* Understand SOC evolution, core domains like asset/compliance management, and modern frameworks.
* Implement log management, SIEM use cases, and incident response lifecycles.
* Leverage threat intelligence lifecycles and proactive threat hunting methodologies.
* Adapt SOCs to AI/ML, cloud, and other emerging technologies for future resilience.
* Integrate SOC operations with business continuity, compliance, and industry frameworks.
WHO THIS BOOK IS FOR
The book serves as a guide for those who are interested in managing the facets of SOC. The responders at level 1, analysts at level 2, and senior analysts at level 3 can gain insights to refresh their understanding and provide guidance for career professionals. This book aims to equip professionals, from analysts to executives, with the knowledge to build scalable, resilient SOCs that are ready to confront emerging challenges.
Section 1: Understanding Security Operations Center
1. Cybersecurity Basics
2. Cybersecurity Ramifications and Implications
3. Evolution of Security Operations Centers
4. Domains of Security Operations Centers
5. Modern Developments in Security Operations Centers
6. Incident Response
Section 2: SOC Components
7. Analysis
8. Threat Intelligence and Hunting
9. People
Section 3: Implementing SOC
10. Process
11. Technology
12. Building Security Operations Centers Infrastructure
13. Business Continuity
Section 4: Practical Implementation Aspects
14. Frameworks
15. Best Practices
Section 5: Changing Dynamics of SOC with Evolving Threats Fueled by Emerging Technologies
16. Impact of Emerging Technologies
17. Cyber Resilient Systems
18. Future Directions
Sameer Vasant Kulkarni is currently working as senior vice president, IT infrastructure, cloud, cybersecurity at Decimal Point Analytics. He received his BE degree in electronics and telecommunications from Amravati University in 1996, higher diploma in software engineering from Aptech, Amravati in 1996, master of science (MS) in software systems from BITS Pilani in 2012, post graduate diploma in satellite communication from Space Application Centre, ISRO, Ahmedabad in 2012 and M.Tech in technology management from DIAT, Pune in 2022.
In 1997, he joined the Indian Air Force as an aeronautical engineer (electronics). He was instrumental in project management and maintenance management of various communication (wired/wireless) and IT infrastructure and simulators in IAF. He has also managed the navigational and recovery aids for a typical airport. He has managed enterprise-level data centers (private cloud) and network operations center efficiently. His focus areas include security in enterprise networks, governance, risk and compliance management, digital transformation, and effective use of technology for humanity. He was instrumental in the publication of the bi-annual magazine communication mirror in IAF. His areas of interest include emerging technologies like quantum computing, cloud computing, cybersecurity, artificial intelligence and machine learning, IoT, big data analytics, their exploitation in automation, and ease of life. He is an ISO 27001 lead auditor, senior member of IEEE, and fellow member of IETE. Sameer Kulkarni is an esteemed member of various associations and has contributed extensively to the ICT and cybersecurity field through his research papers published in reputed journals and conferences. In addition to his roles and achievements, he is a certified career counsellor.