Increased Cyber-attacks on the IT infrastructure is a grave concern for organizations. Cyber defense and cyber threat remediation have become topmost priority of organizations. This thesis explains the core concepts of SIEM, UEBA, SOAR and SOC (SUSS) and explains the details of an experimental solution to which was applied MSCS 6560 lab computers for real time cyber threat detection and remediations. To test and validate SUSS concepts, these technologies were successfully applied to a small lab environment in the MSCS infrastructure for the graduate class on the Principle of Service Management and System Administration. Lab machines in this class were used by students in a progression of assignments to implement a common web service, WordPress, and other services. We hope this study would encourage use of commercial tools like Splunk on university lab computers for improving its cyber defense posture.
|School Location:||United States -- Wisconsin|
|Source:||MAI 82/1(E), Masters Abstracts International|
|Subjects:||Computer science, Artificial intelligence|
|Keywords:||SIEM, SOAR, SOC, UEBA|
Copyright in each Dissertation and Thesis is retained by the author. All Rights Reserved
The supplemental file or files you are about to download were provided to ProQuest by the author as part of a
dissertation or thesis. The supplemental files are provided "AS IS" without warranty. ProQuest is not responsible for the
content, format or impact on the supplemental file(s) on our system. in some cases, the file type may be unknown or
may be a .exe file. We recommend caution as you open such files.
Copyright of the original materials contained in the supplemental file is retained by the author and your access to the
supplemental files is subject to the ProQuest Terms and Conditions of use.
Depending on the size of the file(s) you are downloading, the system may take some time to download them. Please be