MONITOR. DETECT. MITIGATE
A properly set up Security Operations Center (SOC) encompasses services ranging from prevention, detection and response to incidents, with teams capable of guaranteeing the security of assets, working 24 hours a day, 7 days a week, with a critical and attentive eye for an equally constant and personalized approach.
Tech
•Preparation
•Identification
•Containment
•Eradication
•Recovery
•Lessons Learned
•Identification
•Containment
•Eradication
•Recovery
•Lessons Learned
Method
•Endpoints
•Netflow
•Network Monitoring
•Threat Intel
•Forensics
• Incident Detection/ Management
•Netflow
•Network Monitoring
•Threat Intel
•Forensics
• Incident Detection/ Management
People
•Formal training
•On-the-Job Experience
•Vendor-Specific training
•Internal training
•On-the-Job Experience
•Vendor-Specific training
•Internal training
CSOC'S Areas of Responsibility
SOC
Tilda Publishing
CSOC´s Mission
Nowadays, trusting advanced security systems alone isn't sufficient to combat cyber threats. First, modern attacks require constant monitoring and event correlation to be detected. The speed of detection, accurate interpretation, and quick response directly affect the extent of damage in a matter of seconds. Second, protection needs to be proactive.
CSOC is a service designed to combat contemporary cyber attacks. Our service ensures customer peace of mind with tailored incident detection rules, well-coordinated interaction, and response scenarios for your information systems. Our experts are prepared to handle the incident detection and response process.
CSOC is a service designed to combat contemporary cyber attacks. Our service ensures customer peace of mind with tailored incident detection rules, well-coordinated interaction, and response scenarios for your information systems. Our experts are prepared to handle the incident detection and response process.
CSOC´s Services
CSOC´s Services
CEO
- 10 years of experience in emerging markets
- Former IT manager at Gemcorp
- Former IT manager at via Consulting
- Former Total EP Angola Senior Unix and infrastructure project manager
Business development
- 21 years in business development, project management and IT projects
- Successful implementation of projects for airlines, insurance companies, MOD, MI (SME) SONANGOL (SONAIR, ACADEMIA, DST, P&P) BAI BANK / BIC BANK
- SAP (BI, SD, MM, FI) AI Machine Learning and Data Science
Audit Director
- CISA, CISSP, CRISC, CDPSE, CCDP, CCNP
- More than 10 years of practical experience in information security audits and process implementation
- Former senior auditor at Informzaschita (2nd largest security integrator in Russia)
Jose Infante
Rui Ramalho
Den Khlapov
Who we are
Our experts not only meet all the requirements and qualifications for the services we offer, they also have the highest levels of certification and real-world experience. Each team member has a signed code of ethics and all information will always be confidential, the privacy of our customers is a fundamental pillar for us.
Tatiana Skripkar
CTO
- 12 years of experience as a technical leader
- CISM (Certified Information Security Manager)
- Former head of the audit and consultancy department at GROUP-IB
Tier 1 – Triage
The initial step involves the daily tasks of managing incidents and alerts, where SOC analysts allocate most of their time. Level 1 analysts, typically less experienced, focus on monitoring alerts and following predefined instructions for their handling.
Tier 2 – Investigation
Moving to Tier 2, analysts investigate incidents more comprehensively to identify threat characteristics and provide appropriate response instructions. This work demands a higher level of experience and deals with escalated alerts unresolved by Level 1.
Tier 3 – Research
The most seasoned analysts primarily dedicate their time to proactively seeking new threats or anomalies that monitoring solutions may have missed. Additionally, Level 3 analysts support incident response and subsequent investigations, actively participating in complex incidents, digital forensics, and malware analysis.
CSOC´s Implementation Approach
We specialize in cybersecurity, leveraging our expertise, experience, and advanced assessment tools to uncover system vulnerabilities and block cybercriminal exploitation.
Our services extend worldwide, providing cutting-edge solutions to businesses. We prioritize commitment, transparency, and professionalism as our core values, and we actively seek like-minded clients interested in forging enduring partnerships.
Our services extend worldwide, providing cutting-edge solutions to businesses. We prioritize commitment, transparency, and professionalism as our core values, and we actively seek like-minded clients interested in forging enduring partnerships.
Why Choose CSOC
Mario Oliveira
Secretary of State for Telecommunications and Information Technologies
"The Vulnerability of Angolan companies is critical, as many of them do not have trained employees and technicians to identify, classify, analyze and avoid the risks of cyber-attacks"
"The Vulnerability of Angolan companies is critical, as many of them do not have trained employees and technicians to identify, classify, analyze and avoid the risks of cyber-attacks"
Manuel Nunes Júnior
Minister of State for Economic Coordination
"Cybersecurity should not be seen as an issue that can be resolved only by the executive, it is everyone's responsibility as citizens and users of the cyber world and only together can the best solutions be found to foster a culture of cybersecurity in institutions and companies, adopting the best practices by investing in issues relating to digital and physical security, among other actions"
"Cybersecurity should not be seen as an issue that can be resolved only by the executive, it is everyone's responsibility as citizens and users of the cyber world and only together can the best solutions be found to foster a culture of cybersecurity in institutions and companies, adopting the best practices by investing in issues relating to digital and physical security, among other actions"
Hediantro Wilson Mena
National Director of Cybersecurity at the Ministry of Telecommunications, Information Technologies and Social Communication (MINTTICS)
"Public and private companies in Angola registered in the first half of this year (2020) more than a thousand cyber-attacks"
"Public and private companies in Angola registered in the first half of this year (2020) more than a thousand cyber-attacks"
Cyber Quotes
CSOC plays a crucial role in helping organizations improve their overall cybersecurity posture. CSOC has dedicated teams and facilities responsible for monitoring, detecting, responding to, and mitigating cybersecurity threats and incidents in real-time.
The types of cybersecurity incidents and threats that clients should be most concerned about can vary significantly depending on their industry, business operations, and the specific technologies they use. It's crucial for organizations to conduct a risk assessment and threat modeling exercise to determine their unique cybersecurity concerns.
To enhance threat detection and response, clients should regularly share specific information and data with us. Effective communication and information sharing are critical for a proactive and responsive cybersecurity posture.
Ensuring the protection of an organization's sensitive data and intellectual property within the scope of SOC involves a combination of technical measures, policies, and procedures.
SLAs and response times can vary widely depending on the organization's needs, resources, and the severity of the incident.
We often share anonymized and generalized case studies or success stories that highlight our capabilities and expertise without revealing sensitive client information. These case studies may describe the types of threats or incidents encountered, our response strategies, and the outcomes achieved. If you are considering engaging our service, you can request references and case studies that showcase our experience and track record in handling various cybersecurity incidents. These materials can help you assess our capabilities and determine if we are a good fit for your organization's security needs. Keep in mind that any specific incident details are typically kept confidential to protect client privacy and security.
We are responsible for maintaining the confidentiality and integrity of the client's sensitive information. To achieve this, we implement a range of measures and best practices:
- Access Control
- Data Encryption
- Secure Communication
- Secure Storage
- Data Masking and Anonymization
- Incident Reporting and Handling
- Non-Disclosure Agreements (NDAs)
- Security Awareness and Training
- Physical Security
- Regular Audits and Assessments
Effective collaboration with the SOC to customize security monitoring and incident response procedures involves establishing clear security objectives, maintaining open communication, tailoring procedures to your organization's needs, conducting risk assessments, defining incident escalation paths, and regularly reviewing and updating security measures to ensure they align with your unique business requirements and the evolving threat landscape.
To keep clients informed about the CSOC's ongoing activities and the security status of the organization, several reporting and communication mechanisms are typically in place. These include regular status reports summarizing security incidents and activities, monthly or quarterly performance reviews, incident alerts for critical threats or breaches in real-time, and direct communication channels like email, phone, or secure messaging for urgent matters. Additionally, some CSOCs provide clients with access to dashboards and security portals where they can view real-time security metrics and incident details. This multifaceted approach ensures clients have comprehensive and timely visibility into the CSOC's efforts and the organization's security posture.
In the event of a security breach, the CSOC will take the folloing steps to assist the client:
1) We will immediately contain and mitigate the breach to minimize further damage.
2) We will initiate a thorough forensic investigation to identify the extent of the breach, how it occurred, and what data or systems were affected.
3) The CSOC will help the client comply with legal requirements, such as reporting the breach to relevant authorities and affected individuals as mandated by data protection laws.
4) Additionally, we may provide guidance on public relations efforts, helping the client craft a communication strategy to maintain transparency with customers, partners, and the public while protecting the organization's reputation.
Throughout this process, the CSOC will collaborate closely with the client to ensure a coordinated and effective response.
1) We will immediately contain and mitigate the breach to minimize further damage.
2) We will initiate a thorough forensic investigation to identify the extent of the breach, how it occurred, and what data or systems were affected.
3) The CSOC will help the client comply with legal requirements, such as reporting the breach to relevant authorities and affected individuals as mandated by data protection laws.
4) Additionally, we may provide guidance on public relations efforts, helping the client craft a communication strategy to maintain transparency with customers, partners, and the public while protecting the organization's reputation.
Throughout this process, the CSOC will collaborate closely with the client to ensure a coordinated and effective response.
Get Started with CSOC Our specialists are ready to tailor our security service solutions to fit the needs of your organization. You agree to our Terms and Conditions |
Contact us
Phone: +244 930 968 302
Email: info@cyber0.net
Address: Building 1A, Office 9A/B,
Condominio Rosalinda, Luanda
Email: info@cyber0.net
Address: Building 1A, Office 9A/B,
Condominio Rosalinda, Luanda
© All rights reserved