UGC Approved Journal no 63975(19)
New UGC Peer-Reviewed Rules

ISSN: 2349-5162 | ESTD Year : 2014
Volume 12 | Issue 10 | October 2025

JETIREXPLORE- Search Thousands of research papers

WhatsApp Contact
Click Here

Published in:

Volume 11 Issue 6
June-2024
eISSN: 2349-5162

UGC and ISSN approved 7.95 impact factor UGC Approved Journal no 63975

7.95 impact factor calculated by Google scholar

Unique Identifier

Published Paper ID:
JETIR2406A44


Registration ID:
539828

Page Number

K367-K371

Share This Article


Jetir RMS

Title

Security Operation Centre using open-source tools

Abstract

The SOC allows organizations to quickly address and mitigate threats, triage the different alerts based on their priority. In essence, the SOC plays an integral part in the Threat Response lifecycle. The SOC is also necessary for risk management, regulatory compliance, and fostering a security-conscious culture inside organisations. This paper covers the architecture and the deployment of an open-source Security Operations Centre (SOC) using Cortex, Shuffle, TheHive, and Wazuh. Wazuh offers real-time log analysis, threat identification, and compliance management functionality to our integrated solution. TheHive allows effective incident management and collaborative response activities through its case management and alert correlation features. By providing automatic reaction actions and threat intelligence enrichment, Cortex enhances the capabilities of the SOC and makes it possible to mitigate security issues quickly and effectively. Shuffle also lends its features to the ecosystem by offering a fully customizable and adaptable workflow that allows the user to automate the processes. All these integrated components empower organizations to defend against emerging threats in a proactive manner, streamline incident response workflows, and continuously enhance their cybersecurity posture in an open-sourced and extensible manner, thereby decreasing the cost to the company.

Key Words

Security Operations Centre (SOC), Security Incident and Event Management (SIEM), Extended Detection and Response (XDR), Open Source, Case Management, Threat Intelligence

Cite This Article

"Security Operation Centre using open-source tools", International Journal of Emerging Technologies and Innovative Research (www.jetir.org), ISSN:2349-5162, Vol.11, Issue 6, page no.K367-K371, June-2024, Available :http://www.jetir.org/papers/JETIR2406A44.pdf

ISSN


2349-5162 | Impact Factor 7.95 Calculate by Google Scholar

An International Scholarly Open Access Journal, Peer-Reviewed, Refereed Journal Impact Factor 7.95 Calculate by Google Scholar and Semantic Scholar | AI-Powered Research Tool, Multidisciplinary, Monthly, Multilanguage Journal Indexing in All Major Database & Metadata, Citation Generator

Cite This Article

"Security Operation Centre using open-source tools", International Journal of Emerging Technologies and Innovative Research (www.jetir.org | UGC and issn Approved), ISSN:2349-5162, Vol.11, Issue 6, page no. ppK367-K371, June-2024, Available at : http://www.jetir.org/papers/JETIR2406A44.pdf

Publication Details

Published Paper ID: JETIR2406A44
Registration ID: 539828
Published In: Volume 11 | Issue 6 | Year June-2024
DOI (Digital Object Identifier):
Page No: K367-K371
Country: Mumbai, Maharashtra, India .
Area: Engineering
ISSN Number: 2349-5162
Publisher: IJ Publication
Published Paper URL :: https://www.jetir.org/view?paper=JETIR2406A44
Published Paper PDF: https://www.jetir.org/papers/JETIR2406A44

Preview This Article


Downlaod

Click here for Article Preview

Download PDF

Downloads

000253

Print This Page

Current Call For Paper

Volume 12 | Issue 10
October 2025

Call for Paper
Cilck Here For More Info

Jetir RMS