Optimal Assignment of Sensors to Analysts in a Cybersecurity Operations Center

Optimal Assignment of Sensors to Analysts in a Cybersecurity Operations Center

A cybersecurity operations center (CSOC) analyzes a large volume of alerts generated by intrusion detection systems, which process data from a number of sensors. Sensors are assigned to analysts, and the number of sensors is much larger than the number of analysts at the CSOC. Hence, sensors are gro...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE systems journal 2019-03, Vol.13 (1), p.1060-1071
Hauptverfasser: Shah, Ankit, Ganesan, Rajesh, Jajodia, Sushil, Cam, Hasan
Format: Artikel
Sprache:eng
Schlagworte:
Absenteeism
Adaptation models
Adaptive grouping and allocation
Analytical models
balance unanalyzed alerts
Cluster analysis
Computer security
Cybersecurity
cybersecurity analyst tooling and credentials
integer optimization
Intrusion detection systems
optimal clustering of sensors
Properties (attributes)
Resource management
Sensor phenomena and characterization
Sensors
Tooling
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Schreiben Sie den ersten Kommentar!
Bitte loggen Sie sich zuerst ein