Effectiveness of Malware Incident Management in Security Operations Centres: Trends, Challenges and Research Directions

Dakouri Gazo; Asma Patel; Asma Patel; Mohammad Hasan

doi:10.5220/0012389900003648

Effectiveness of Malware Incident Management in Security Operations Centres: Trends, Challenges and Research Directions

Dakouri Gazo, Asma Patel, Asma Patel, Mohammad Hasan

2024

Abstract

In the ever-changing realm of cybersecurity, protecting digital assets requires constant awareness and rapid incident response in security operations centre (SOC), where security professionals employ cutting-edge threat-fighting strategies. The battle becomes more intense in the face of ever-more complex adversaries, such as advanced and persistent malware. The riddle of malware incidents, on the other hand, provides distinct ob-stacles, requiring steadfast specialised competence and innovative strategies. Effective incident handling is essential for protecting organisational digital assets, given the ongoing evolution and rising sophistication of cyberattacks. This paper reviews the literature that explores the complexities of the current state of malware event-handling solutions and identifies challenges by delving into SOC operations. It provides the recommen-dations and guidance necessary to SOC researchers and security professionals, empowering them to tackle malware incidents and strengthen cybersecurity defences.

Download

Paper Citation

in Harvard Style

Gazo D., Patel A. and Hasan M. (2024). Effectiveness of Malware Incident Management in Security Operations Centres: Trends, Challenges and Research Directions. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP; ISBN 978-989-758-683-5, SciTePress, pages 162-169. DOI: 10.5220/0012389900003648

in Bibtex Style

@conference{icissp24,
author={Dakouri Gazo and Asma Patel and Mohammad Hasan},
title={Effectiveness of Malware Incident Management in Security Operations Centres: Trends, Challenges and Research Directions},
booktitle={Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP},
year={2024},
pages={162-169},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012389900003648},
isbn={978-989-758-683-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 10th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP
TI - Effectiveness of Malware Incident Management in Security Operations Centres: Trends, Challenges and Research Directions
SN - 978-989-758-683-5
AU - Gazo D.
AU - Patel A.
AU - Hasan M.
PY - 2024
SP - 162
EP - 169
DO - 10.5220/0012389900003648
PB - SciTePress