Please use this identifier to cite or link to this item:
http://hdl.handle.net/10609/138249
| Title: | Orquestación y respuesta ante incidentes de ciberseguridad |
| Author: | Sánchez Palma, Sergio |
| Tutor: | Mendoza Flores, Manuel Jesús |
| Others: | Romero-Tris, Cristina  |
| Abstract: | Cyber threats are increasing every year and it is common for organizations and individuals to experience their consequences. The impact can be of different types, affecting basic population services or human lives in the worst case. There are many technologies that aim to improve the security posture of organizations by mitigating or eradicating the risk from threats. Lack of experience, limited technical team and lack of procedures are a delay their treatment. In the last years, a new technology called SOAR has appeared, which aims to automate those actions, usually performed by SOC teams, reducing incident response times. The objective of the project is to generate a value proposition that will allow us to determine whether SOAR tools are a solution. To this purpose, an investigation work has been performed to determine the different types of threats registered and which ones represent a higher risk. With the objective of automating their response. Additionally, prevention and remediation flows have been designed and tested in a laboratory environment. The results obtained have been satisfactory in terms of the use of technology through the implementation of use cases. In relation to the study performed, the critical nature of the data, the absence of a data model to record incidents that would allow analytics and only work with aggregated information, have not helped to determine a criteria that would help to prioritize the management of the different threats. These did not help to establish a criteria to help to prioritize the management of the different threats. |
| Keywords: | orchestration cybersecurity SOAR |
| Document type: | info:eu-repo/semantics/masterThesis |
| Issue Date: | 28-Dec-2021 |
| Publication license: | http://creativecommons.org/licenses/by-nc-nd/3.0/es/  |
| Appears in Collections: | Trabajos finales de carrera, trabajos de investigación, etc. |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| sergio85spTFM0122memoria.pdf | Memoria de TFM | 2,16 MB | Adobe PDF |  View/Open |
| sergio85spTFM0122documentación_técnica.pdf | Documentación técnica del TFM | 703,27 kB | Adobe PDF |  View/Open |
| sergio85spTFM0122propuestadevalor.pdf | Propuesta de valor del TFM | 24,43 kB | Adobe PDF |  View/Open |
Share:
Google Scholar
Microsoft Academic
This item is licensed under a Creative Commons License
