This purpose of this project is to implement a solution that would give an MSSP

This purpose of this project is to implement a

This preview shows page 1 out of 1 page.

This purpose of this project is to implement a solution that would give an MSSP the ability to respond to an event and stop the incident before it can spread throughout the network. By looking at and researching the top incident response platforms, the best overall fit for the customer will be chosen that gives both the MSSP and the customer the ability to quarantine the incident, prevent it from continuing to deliver its payload, and blacklist the file or application based on unique identifiers such as the SHA. The main business drivers of this proposal are to increase the operational efficiency of the MSSP team, reduce the overall cyber security risk to the customer by providing additional event analysis functionality, and to help the organization meet legal and compliance regulations. The research methodology that is planned for this project would be the Waterfall Method as it should allow for the proper implementation and testing of several incident response frameworks in order to choose the best overall product for the customers and the MSSP. The proposed outcome of this project is a fully integrated Cyber Incident Response Platform that allows an MSSP SOC analyst to receive alerts, enrich that data with additional indicators such as processes used during the incident that may lead to further compromise and align their investigations with industry standard incident response methodologies and tactics, such as NIST 800-61r2 and guidelines such as the SANS Incident Handler’s Handbook.
Image of page 1

You've reached the end of your free preview.

Want to read the whole page?

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern

Ask Expert Tutors You can ask You can ask ( soon) You can ask (will expire )
Answers in as fast as 15 minutes