Gaweł Mikołajczyk

Head of Security Operations @ Tieto Security Services


Stories from the SOC – Security Operations vol. 2019

The session will cover the building and running a successful Security Operations Center in 2019.
We will explore what it takes to establish a commercially viable and competitive multinational Managed Detection and Response (MDR) organization.
We will go comprehensively through People, Process, Technology, Analytics and Security Intelligence considerations within the SOC.
We will cover, but not limited to, Security Threat Analysis, Incident Response, Threat Hunting, SOC Technology Stack Platform Operations, SIEM, Security Orchestration, Automation and Response (SOAR), as well as Customer Engagement, Product and Project Management approaches to achieve ultimate victory.
Both on-premise and cloud SOC aspects will be touched upon, with classic and cloud-native approaches to embrace the cybersecurity within those environments.
The session will be enriched with examples of cybersecurity incidents, both humorous and horror stories, deeply immersed in the unique SOC culture.


3 key takeaways:

  • Get a good grasp of Security Operations Center functions
  • Be familiar with SOC People, Process, Technology, Analytics and Intelligence pillars
  • Enrich the thinking process around your own Organization with security-centric elements