Review of using Open Source Software for SOC for education purposes – a case study

Abstract

At present, information security solutions and suitably trained experts with practical experience have a key role to play. Due to the covid-pandemic, people’s tasks without physical contact came to the fore, and remote work became more valuable. At the same time, the number of cyber-attacks has suddenly increased, not even sparing hospitals. The aim of this article is to present how to prepare recent security professionals and future experts for work based on SOC implementation and operation from on threat modeling through applying higher quality Information Security solutions. We use open source software environment as prototype. The goal with SOC based on open source software is to demonstrate the perception of a possible cyberattack, in addition, we present the possibility of using it even in enterprise environment. Basically, by applying this direction for training and education purposes, we achieve experts with comprehensive knowledge on newer type of attacks and defense capabilities while they able to apply quick and even risk-proportionate solutions to challenges. A sufficiently in-depth knowledge of an Open source-based SOC solution for educational purposes helps them prepare for the optimal handling of cyber security threats and facilitate the acquisition of in-depth information in the field of Information Security.