Abstract
Cybersecurity is an emerging field of national security where usually the technical aspects of defense take first place. Cyberdefense is heavily relaying on teamwork where members of Computer Emergency Response Team (CERT) or Computer Security Incident Response Team (CSIRT) or Security Operations Center (SOC) teams are often geographically dispersed. In cybersecurity teamwork, computer supported collaboration is crucial as the team functions virtually in many ways.In this paper we present the results of interviews that were conducted with SOC exerts and we summarize the reviewed relevant literature. We have reviewed knowledge, skills, abilities and other characteristics (KSAOs) that make a team of cybersecurity experts capable to perform as virtual teams. These results revealed that to treat the cybersecurity team as a socio-technical system and supporting to cope with challenges of virtual teams helps them to be more effective and enhances employee retention. This perspective may contribute to cyberdefense of both industry and military.
Highlights
As cybersecurity is getting one of the most important national security issues worldwide, nations began improving their ability to tackle this challenge successfully by setting up specialized forces for cyberdefence
There are Security Operations Center (SOC) owned by enterprises only for compliance reasons, and these are not operated at their full potential
We have found that SOC activities are separated from the overall security or operations departments in most cases
Summary
As cybersecurity is getting one of the most important national security issues worldwide, nations began improving their ability to tackle this challenge successfully by setting up specialized forces for cyberdefence. A CERT or a CSIRT can support one organization or a set of organizations with the same interest. The basis of their success is the continuous flow and interpretation of security related information. This can be done in a Security Operations Center (SOC) that is the key element of modern incident management. There are several CERTs or CSIRTs in Hungary, some of them support private companies, some of them were established by non-profit organizations, some of them came into being through the effects of a law. CERT-Hungary is responsible for the incident management of all governmental and municipal bodies, Mil-CERT deals with the cyber incidents
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callMore From: Academic and Applied Research in Military and Public Management Science
Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
