SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsThe Network Operations Center uses numerous tools ranging from Intrusion Detection (Snort) and Intrusion Protection (Tipping Point) to simple SNMP monitors (Netsight Element Manager). I will discuss how they use these tools to maintain a secure IT environment and assist Network Administrators as well as protect the campus community. The Network Operations Center also provides a level of physical security for critical University systems, both campus-wide as well as internal to the Network Operations Center. This paper will explain how all of the different departments utilize the Network Operations Center and how the Network Operations Center provides assistance to these areas while using Standard Operating Procedures and how this applies to IT Security. Finally, I will elaborate on two possible ways for improving the Network Operations Center: improving documentation methods and creating a stand alone Security monitoring area.