Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers

Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers

Security Operation Centers (SOCs) are being operated by universities, government agencies, and corporations to defend their enterprise networks in general and in particular to identify and thwart malicious behaviors in both networks and hosts. The success of a SOC depends on a combination of good to...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet computing 2017-06, p.1-1
Hauptverfasser: Sundaramurthy, Sathya Chandran, Wesch, Michael, Ou, Xinming, McHugh, John, Rajagopalan, S. Raj, Bardas, Alexandru
Format: Artikel
Sprache:eng
Schlagworte:
C.2.0.f Network-level security and protection < C.2.0 General < C.2 Communication/Networking and Information Technology < C Comp
Creativity
H Information Technology and Systems
H.1 Models and Principles
H.1.2 User/Machine Systems
H.1.2.a Human factors
Internet
Measurement
Organizations
Security
Technological innovation
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 1
container_issue
container_start_page 1
container_title IEEE internet computing
container_volume
creator Sundaramurthy, Sathya Chandran
Wesch, Michael
Ou, Xinming
McHugh, John
Rajagopalan, S. Raj
Bardas, Alexandru
description Security Operation Centers (SOCs) are being operated by universities, government agencies, and corporations to defend their enterprise networks in general and in particular to identify and thwart malicious behaviors in both networks and hosts. The success of a SOC depends on a combination of good tools, processes and, most importantly, efficient and effective analysts. During the 4 years that we have used anthropological fieldwork methods to study SOCs, we have discovered that successful SOC innovations must resolve a number of internal and external conflicts to be effective and efficient. This discovery, guided by Activity Theory (AT) which provides a framework for analyzing our fieldwork data, enabled us to understand these realities. Our research indicates conflictresolution is a prerequisite for continuous improvement of SOCs in both human and technological aspects. Failure to do so can leadto adverse effects such as analyst burnout and reduction in overall effectiveness.
doi_str_mv 10.1109/MIC.2017.265103212
format Article
fullrecord <record><control><sourceid>crossref_RIE</sourceid><recordid>TN_cdi_crossref_primary_10_1109_MIC_2017_265103212</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>7950852</ieee_id><sourcerecordid>10_1109_MIC_2017_265103212</sourcerecordid><originalsourceid>FETCH-LOGICAL-c182t-eb01ed34d25b48f0186c64704e5c36f8b74b4edfb7b5e8597e8c647b49e4c8df3</originalsourceid><addsrcrecordid>eNo9kEFOwzAQRS0EEqVwAdj4Agkex0mcZRUBrVTURWEdxc6YBiVxZTtIuT2NWnU1f_T1_uIR8gwsBmDF6-emjDmDPOZZCizhwG_IAgoBEYMEbk-ZySLKJYN78uD9L2NMSg4L8rce-3rwtHZIm2mo-1bHdDc6GqztPPUHO3YNVTj_Md0Mg_2rQ2tPhHG2p-GAdDWEg7NH29mfVtcd3Yexmag1dI96dG2Y6O6I7kKVOAR0_pHcmbrz-HS5S_L9_vZVrqPt7mNTrraRBslDhIoBNoloeKqENAxkpjORM4GpTjIjVS6UwMaoXKUo0yJHOfdKFCi0bEyyJPy8q5313qGpjq7tazdVwKrZXHUyV83mqqu5E_RyhlpEvAJ5kTKZ8uQfNdFsZw</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers</title><source>IEEE Electronic Library (IEL)</source><creator>Sundaramurthy, Sathya Chandran ; Wesch, Michael ; Ou, Xinming ; McHugh, John ; Rajagopalan, S. Raj ; Bardas, Alexandru</creator><creatorcontrib>Sundaramurthy, Sathya Chandran ; Wesch, Michael ; Ou, Xinming ; McHugh, John ; Rajagopalan, S. Raj ; Bardas, Alexandru</creatorcontrib><description>Security Operation Centers (SOCs) are being operated by universities, government agencies, and corporations to defend their enterprise networks in general and in particular to identify and thwart malicious behaviors in both networks and hosts. The success of a SOC depends on a combination of good tools, processes and, most importantly, efficient and effective analysts. During the 4 years that we have used anthropological fieldwork methods to study SOCs, we have discovered that successful SOC innovations must resolve a number of internal and external conflicts to be effective and efficient. This discovery, guided by Activity Theory (AT) which provides a framework for analyzing our fieldwork data, enabled us to understand these realities. Our research indicates conflictresolution is a prerequisite for continuous improvement of SOCs in both human and technological aspects. Failure to do so can leadto adverse effects such as analyst burnout and reduction in overall effectiveness.</description><identifier>ISSN: 1089-7801</identifier><identifier>EISSN: 1941-0131</identifier><identifier>DOI: 10.1109/MIC.2017.265103212</identifier><identifier>CODEN: IICOFX</identifier><language>eng</language><publisher>IEEE</publisher><subject>C.2.0.f Network-level security and protection &lt; C.2.0 General &lt; C.2 Communication/Networking and Information Technology &lt; C Comp ; Creativity ; H Information Technology and Systems ; H.1 Models and Principles ; H.1.2 User/Machine Systems ; H.1.2.a Human factors ; Internet ; Measurement ; Organizations ; Security ; Technological innovation</subject><ispartof>IEEE internet computing, 2017-06, p.1-1</ispartof><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c182t-eb01ed34d25b48f0186c64704e5c36f8b74b4edfb7b5e8597e8c647b49e4c8df3</citedby></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/7950852$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>315,782,786,798,27931,27932,54765</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/7950852$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Sundaramurthy, Sathya Chandran</creatorcontrib><creatorcontrib>Wesch, Michael</creatorcontrib><creatorcontrib>Ou, Xinming</creatorcontrib><creatorcontrib>McHugh, John</creatorcontrib><creatorcontrib>Rajagopalan, S. Raj</creatorcontrib><creatorcontrib>Bardas, Alexandru</creatorcontrib><title>Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers</title><title>IEEE internet computing</title><addtitle>MIC</addtitle><description>Security Operation Centers (SOCs) are being operated by universities, government agencies, and corporations to defend their enterprise networks in general and in particular to identify and thwart malicious behaviors in both networks and hosts. The success of a SOC depends on a combination of good tools, processes and, most importantly, efficient and effective analysts. During the 4 years that we have used anthropological fieldwork methods to study SOCs, we have discovered that successful SOC innovations must resolve a number of internal and external conflicts to be effective and efficient. This discovery, guided by Activity Theory (AT) which provides a framework for analyzing our fieldwork data, enabled us to understand these realities. Our research indicates conflictresolution is a prerequisite for continuous improvement of SOCs in both human and technological aspects. Failure to do so can leadto adverse effects such as analyst burnout and reduction in overall effectiveness.</description><subject>C.2.0.f Network-level security and protection &lt; C.2.0 General &lt; C.2 Communication/Networking and Information Technology &lt; C Comp</subject><subject>Creativity</subject><subject>H Information Technology and Systems</subject><subject>H.1 Models and Principles</subject><subject>H.1.2 User/Machine Systems</subject><subject>H.1.2.a Human factors</subject><subject>Internet</subject><subject>Measurement</subject><subject>Organizations</subject><subject>Security</subject><subject>Technological innovation</subject><issn>1089-7801</issn><issn>1941-0131</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2017</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNo9kEFOwzAQRS0EEqVwAdj4Agkex0mcZRUBrVTURWEdxc6YBiVxZTtIuT2NWnU1f_T1_uIR8gwsBmDF6-emjDmDPOZZCizhwG_IAgoBEYMEbk-ZySLKJYN78uD9L2NMSg4L8rce-3rwtHZIm2mo-1bHdDc6GqztPPUHO3YNVTj_Md0Mg_2rQ2tPhHG2p-GAdDWEg7NH29mfVtcd3Yexmag1dI96dG2Y6O6I7kKVOAR0_pHcmbrz-HS5S_L9_vZVrqPt7mNTrraRBslDhIoBNoloeKqENAxkpjORM4GpTjIjVS6UwMaoXKUo0yJHOfdKFCi0bEyyJPy8q5313qGpjq7tazdVwKrZXHUyV83mqqu5E_RyhlpEvAJ5kTKZ8uQfNdFsZw</recordid><startdate>20170616</startdate><enddate>20170616</enddate><creator>Sundaramurthy, Sathya Chandran</creator><creator>Wesch, Michael</creator><creator>Ou, Xinming</creator><creator>McHugh, John</creator><creator>Rajagopalan, S. Raj</creator><creator>Bardas, Alexandru</creator><general>IEEE</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope></search><sort><creationdate>20170616</creationdate><title>Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers</title><author>Sundaramurthy, Sathya Chandran ; Wesch, Michael ; Ou, Xinming ; McHugh, John ; Rajagopalan, S. Raj ; Bardas, Alexandru</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c182t-eb01ed34d25b48f0186c64704e5c36f8b74b4edfb7b5e8597e8c647b49e4c8df3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2017</creationdate><topic>C.2.0.f Network-level security and protection &lt; C.2.0 General &lt; C.2 Communication/Networking and Information Technology &lt; C Comp</topic><topic>Creativity</topic><topic>H Information Technology and Systems</topic><topic>H.1 Models and Principles</topic><topic>H.1.2 User/Machine Systems</topic><topic>H.1.2.a Human factors</topic><topic>Internet</topic><topic>Measurement</topic><topic>Organizations</topic><topic>Security</topic><topic>Technological innovation</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Sundaramurthy, Sathya Chandran</creatorcontrib><creatorcontrib>Wesch, Michael</creatorcontrib><creatorcontrib>Ou, Xinming</creatorcontrib><creatorcontrib>McHugh, John</creatorcontrib><creatorcontrib>Rajagopalan, S. Raj</creatorcontrib><creatorcontrib>Bardas, Alexandru</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><jtitle>IEEE internet computing</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Sundaramurthy, Sathya Chandran</au><au>Wesch, Michael</au><au>Ou, Xinming</au><au>McHugh, John</au><au>Rajagopalan, S. Raj</au><au>Bardas, Alexandru</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers</atitle><jtitle>IEEE internet computing</jtitle><stitle>MIC</stitle><date>2017-06-16</date><risdate>2017</risdate><spage>1</spage><epage>1</epage><pages>1-1</pages><issn>1089-7801</issn><eissn>1941-0131</eissn><coden>IICOFX</coden><abstract>Security Operation Centers (SOCs) are being operated by universities, government agencies, and corporations to defend their enterprise networks in general and in particular to identify and thwart malicious behaviors in both networks and hosts. The success of a SOC depends on a combination of good tools, processes and, most importantly, efficient and effective analysts. During the 4 years that we have used anthropological fieldwork methods to study SOCs, we have discovered that successful SOC innovations must resolve a number of internal and external conflicts to be effective and efficient. This discovery, guided by Activity Theory (AT) which provides a framework for analyzing our fieldwork data, enabled us to understand these realities. Our research indicates conflictresolution is a prerequisite for continuous improvement of SOCs in both human and technological aspects. Failure to do so can leadto adverse effects such as analyst burnout and reduction in overall effectiveness.</abstract><pub>IEEE</pub><doi>10.1109/MIC.2017.265103212</doi><tpages>1</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISSN: 1089-7801
ispartof IEEE internet computing, 2017-06, p.1-1
issn 1089-7801
1941-0131
language eng
recordid cdi_crossref_primary_10_1109_MIC_2017_265103212
source IEEE Electronic Library (IEL)
subjects C.2.0.f Network-level security and protection < C.2.0 General < C.2 Communication/Networking and Information Technology < C Comp
Creativity
H Information Technology and Systems
H.1 Models and Principles
H.1.2 User/Machine Systems
H.1.2.a Human factors
Internet
Measurement
Organizations
Security
Technological innovation
title Humans are dynamic. Our tools should be too. Innovations from the Anthropological Study of Security Operations Centers
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-05T04%3A00%3A04IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-crossref_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Humans%20are%20dynamic.%20Our%20tools%20should%20be%20too.%20Innovations%20from%20the%20Anthropological%20Study%20of%20Security%20Operations%20Centers&rft.jtitle=IEEE%20internet%20computing&rft.au=Sundaramurthy,%20Sathya%20Chandran&rft.date=2017-06-16&rft.spage=1&rft.epage=1&rft.pages=1-1&rft.issn=1089-7801&rft.eissn=1941-0131&rft.coden=IICOFX&rft_id=info:doi/10.1109/MIC.2017.265103212&rft_dat=%3Ccrossref_RIE%3E10_1109_MIC_2017_265103212%3C/crossref_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=7950852&rfr_iscdi=true