Implementation of an event and security information management system at a Public University
Abstract
The number of cyber attacks has increased significantly around the world, leaving organizations facing a wide range of risks from phishing and denial of service attacks, ransomware and other forms of malware. Cybersecurity incidents are often results of systems vulnerabilities and lack of monitoring. In this scenario it is crucial institutions to invest in modern security technologies. However, public universities have been suffering from investment cuts which also impact protection initiatives. This paper reports an implementation of a free software-based security information and event management system (SIEM) and a cybersecurity unit at a public university. The SIEM detected 782 events that resulted in configuration and usage policy changes aimed at protecting the infrastructure and systems.References
Arvindpdmn, N. (2020). Owasp zap. [link].
Davies, A. and Schneider, M. (2024). Magic quadrant for security information and event management. Gartner RAS Core Reasearch Note (May 2024).
Elastic (2024). Elastic observability and security - built on elasticsearch. [link].
Lima, P. R. S., Ferreira, L. M. M., and de Albuquerque Peixoto, A. L. V. (2022). Gestão da segurança da informação: análise de políticas de defesa cibernética e estratégias para a proteção de dados e informações da administração pública brasileira. P2P E INOVAÇÃO, 9(1):206–221.
Manzoor, J., Waleed, A., Jamali, A. F., and Masood, A. (2024). Cybersecurity on a budget: Evaluating security and performance of open-source siem solutions for smes. Plos one, 19(3):e0301183.
Mijwil, M., Filali, Y., Aljanabi, M., Bounabi, M., Al-Shahwani, H., et al. (2023). The purpose of cybersecurity governance in the digital transformation of public services and protecting the digital environment. Mesopotamian journal of cybersecurity, 2023:1–6.
Project Management Institute (2017). A Guide to the Project Management Body of Knowledge (PMBOK® Guide). Project Management Institute, sixth edition.
Shoard, P., Davies, A., and Schneider, M. (2023). Magic quadrant for security information and event management. [link].
Sou Ciência, Centro de Estudos Sociedade, U. e. C. (2024). Orçamento das universidades federais. [link].
Tariq, A., Manzoor, J., Aziz, M. A., Tariq, Z. U. A., and Masood, A. (2023). Open source siem solutions for an enterprise. Information & Computer Security, 31(1):88–107.
Davies, A. and Schneider, M. (2024). Magic quadrant for security information and event management. Gartner RAS Core Reasearch Note (May 2024).
Elastic (2024). Elastic observability and security - built on elasticsearch. [link].
Lima, P. R. S., Ferreira, L. M. M., and de Albuquerque Peixoto, A. L. V. (2022). Gestão da segurança da informação: análise de políticas de defesa cibernética e estratégias para a proteção de dados e informações da administração pública brasileira. P2P E INOVAÇÃO, 9(1):206–221.
Manzoor, J., Waleed, A., Jamali, A. F., and Masood, A. (2024). Cybersecurity on a budget: Evaluating security and performance of open-source siem solutions for smes. Plos one, 19(3):e0301183.
Mijwil, M., Filali, Y., Aljanabi, M., Bounabi, M., Al-Shahwani, H., et al. (2023). The purpose of cybersecurity governance in the digital transformation of public services and protecting the digital environment. Mesopotamian journal of cybersecurity, 2023:1–6.
Project Management Institute (2017). A Guide to the Project Management Body of Knowledge (PMBOK® Guide). Project Management Institute, sixth edition.
Shoard, P., Davies, A., and Schneider, M. (2023). Magic quadrant for security information and event management. [link].
Sou Ciência, Centro de Estudos Sociedade, U. e. C. (2024). Orçamento das universidades federais. [link].
Tariq, A., Manzoor, J., Aziz, M. A., Tariq, Z. U. A., and Masood, A. (2023). Open source siem solutions for an enterprise. Information & Computer Security, 31(1):88–107.
Published
2024-11-07
How to Cite
CAMINHA, Jean; SUSUKI, Renan Heiji.
Implementation of an event and security information management system at a Public University. In: REGIONAL SCHOOL ON INFORMATICS OF MATO GROSSO (ERI-MT), 13. , 2024, Alto Araguaia/MT.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2024
.
p. 37-42.
ISSN 2447-5386.
DOI: https://doi.org/10.5753/eri-mt.2024.245811.
