SOC Outsourcing

The ECSC outsourced Security Operations Centre is designed to provide a comprehensive cyber security function, delivering a level of expertise, experience, and technologies that organisations find near impossible to replicate in-house.

The new General Data Protection Regulations (GDPR), confirmed to be established as UK law in May 2018, introduce fines of up to 10 million Euros, or 2% of global turnover for cyber security breaches. In addition, the regulations include a requirement to report suspected breaches within 72 hours, giving new importance to prompt detection, analysis, and incident response.

In-house vs. outsourced

For your in-house IT team, the cyber security technical challenges can be immense already, and the arrival of GDPR is sure to only increase the pressures further. Each year there are typically over 7,000 new technical vulnerabilities discovered and published worldwide. This demonstrates that the risk environment is changing daily, and having access to specialist and experienced personnel to understand the risks, and continually review and improve protection systems, has never been more important.

This is not to mention the challenges your wider organisation faces, such as the recruitment, retention and continual replacement of the sought-after cyber security skills that are necessary to build an effective team.

ECSC operates 24/7/365 from our two Security Operation Centres, located in the UK and Australia. Our locations are selected based on their trusted government and regulatory environment, and availability of highly skilled and qualified personnel. By outsourcing your security, clear delineation of focus and roles can be established.

As your outsourced team focuses on understanding the threat landscape, managing your specialist devices and services, and detecting events, your in-house IT team can focus their time on understanding your business IT services requirements, administering IT systems to deliver service uptime and interfacing with users, all without having to worry about whether your security is in-hand.

What does outsourcing do?

ECSC Security Operations outsourcing delivers a wide range of managed technologies that integrate within the global Security Operations Centres' 24/7/365 coverage. The service is designed to deliver three critical areas of your cyber security:

PREVENTION

    This area incorporates the design, management and reporting of protective technology layers for your networks and critical systems – simply put, these systems are designed to block attacks, without requiring time-consuming analysis and investigation. Technologies include:

  • Firewalls – to provide external network protection and internal segmentation of critical systems.
  • Web Application Firewalls (WAFs) – delivering enhanced attack blocking for Internet-facing systems.
  • Intrusion Prevention Systems (IPS) – designed to automatically block suspicious traffic.

DETECTION

    This involves the monitoring of security alerts, initial analysis, and alerting your internal team and giving them advice, support and guidance – these systems form part of the overall Security Information & Event Management (SIEM) solution, and can include:

  • Intrusion Detection Systems (IDS) – both network and host based, to give early warning of suspicious behaviour that might indicate an attack.
  • Log Analysis – extracting, securing and analysing a wide range of system logs to detect security issues.
  • File Integrity Monitoring (FIM) – alerts to changes in key system components that could be linked to a system compromise.
  • Internal and external scanning to confirm current vulnerability status.

RESPONSE

    Escalation of important events to the ECSC Incident Response Team (IRT), supporting you with incident management, investigations, and external communications, including the Information Commissioner's Office (ICO). At this stage, we focus upon:

  • Investigation – to confirm the scope and nature of the breach.
  • Containment – limiting the damage and blocking further intrusions.
  • Recovery – restoring IT systems and related business functions.
  • Communications – helping you with calm, timely communications both internally and externally.

You can read more about outsourcing your cyber security management to a specialist Security Operations Centre in our Operation Centre Outsourcing brochure.

If you are wondering whether outsourcing your cyber security would provide the best solution to meet your needs, please do not hesitate to contact us to discuss your requirements.


Sign Up

Sign Up For the Latest News, Briefings & Announcements




ECSC Group plc

ECSC has over 15 years' experience in the design, implementation and management of IT security solutions.

Reg No. 3964848

VAT No. 746361914

Contact

28 Campus Road
Listerhills Science Park
Bradford
BD7 1HR
United Kingdom

+44 (0) 1274 736 223

info@ecsc.co.uk