{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T18:11:09Z","timestamp":1743012669524,"version":"3.40.3"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783031106835"},{"type":"electronic","value":"9783031106842"}],"license":[{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2022,1,1]],"date-time":"2022-01-01T00:00:00Z","timestamp":1640995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2022]]},"DOI":"10.1007\/978-3-031-10684-2_18","type":"book-chapter","created":{"date-parts":[[2022,7,12]],"date-time":"2022-07-12T07:05:06Z","timestamp":1657609506000},"page":"316-327","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Security Operations Center Roles and\u00a0Skills: A Comparison of\u00a0Theory and\u00a0Practice"],"prefix":"10.1007","author":[{"given":"Andreas","family":"Reisser","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Manfred","family":"Vielberth","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sofia","family":"Fohringer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"G\u00fcnther","family":"Pernul","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,7,13]]},"reference":[{"key":"18_CR1","doi-asserted-by":"crossref","unstructured":"Agyepong, E., Cherdantseva, Y., Burnap, P., Reinecke, P.: Towards a framework for measuring the performance of a security operations center analyst (2020)","DOI":"10.1109\/CyberSecurity49315.2020.9138872"},{"key":"18_CR2","doi-asserted-by":"crossref","unstructured":"AlSabbagh, B., Kowalski, S.: A framework and prototype for a socio-technical security information and event management system (ST-SIEM). In: 2016 European Intelligence and Security Informatics Conference (EISIC), pp. 192\u2013195. IEEE (2016)","DOI":"10.1109\/EISIC.2016.049"},{"key":"18_CR3","unstructured":"Caminiti, S.: CNBC technology executive council: Cyber threats, ongoing war for talent, biggest concerns for tech leaders (2021). https:\/\/www.cnbc.com\/2021\/03\/25\/cyber-threats-war-for-talent-are-biggest-concerns-for-tech-leaders-.html"},{"key":"18_CR4","unstructured":"Cassetto, O.: Security operations center roles and responsibilities (2019). https:\/\/www.exabeam.com\/security-operations-center\/security-operations-center-roles-and-responsibilities\/. Accessed 16 Nov 2020"},{"key":"18_CR5","series-title":"Advanced Sciences and Technologies for Security Applications","doi-asserted-by":"publisher","first-page":"287","DOI":"10.1007\/978-3-030-16837-7_13","volume-title":"Cybersecurity and Secure Information Systems","author":"C DeCusatis","year":"2019","unstructured":"DeCusatis, C., Cannistra, R., Labouseur, A., Johnson, M.: Design and implementation of a research and education cybersecurity operations center. In: Hassanien, A.E., Elhoseny, M. (eds.) Cybersecurity and Secure Information Systems. ASTSA, pp. 287\u2013310. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-16837-7_13"},{"key":"18_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1007\/978-3-030-30719-6_9","volume-title":"Adversarial and Uncertain Reasoning for Adaptive Cyber Defense","author":"R Ganesan","year":"2019","unstructured":"Ganesan, R., Shah, A., Jajodia, S., Cam, H.: Optimizing alert data management processes at a cyber security operations center. In: Jajodia, S., Cybenko, G., Liu, P., Wang, C., Wellman, M. (eds.) Adversarial and Uncertain Reasoning for Adaptive Cyber Defense. LNCS, vol. 11830, pp. 206\u2013231. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-30719-6_9"},{"key":"18_CR7","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-34362-9","volume-title":"Forschungsmethoden in Psychologie und Sozialwissenschaften f\u00fcr Bachelor","author":"W Hussy","year":"2013","unstructured":"Hussy, W., Schreier, M., Echterhoff, G.: Forschungsmethoden in Psychologie und Sozialwissenschaften f\u00fcr Bachelor. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-34362-9"},{"key":"18_CR8","doi-asserted-by":"crossref","unstructured":"H\u00e1mornik, B.P., Krasznay, C.: Prerequisites of virtual teamwork in security operations centers: knowledge, skills, abilities and other characteristics (2017)","DOI":"10.32565\/aarms.2017.3.5"},{"key":"18_CR9","series-title":"Advances in Intelligent Systems and Computing","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1007\/978-3-319-60585-2_21","volume-title":"Advances in Human Factors in Cybersecurity","author":"BP H\u00e1mornik","year":"2018","unstructured":"H\u00e1mornik, B.P., Krasznay, C.: A team-level perspective of human factors in cyber security: security operations centers. In: Nicholson, D. (ed.) AHFE 2017. AISC, vol. 593, pp. 224\u2013236. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-60585-2_21"},{"key":"18_CR10","doi-asserted-by":"publisher","unstructured":"Kokulu, F.B., et al.: Matched and mismatched SOCs: a qualitative study on security operations center issues. In: Proceedings of the ACM Conference on Computer and Communications Security, pp. 1955\u20131970. Association for Computing Machinery (2019). https:\/\/doi.org\/10.1145\/3319535.3354239","DOI":"10.1145\/3319535.3354239"},{"key":"18_CR11","volume-title":"Security Operations Center Building, Operating, and Maintaining your SOC","author":"J Muniz","year":"2015","unstructured":"Muniz, J., McIntyre, G., AlFardan, N.: Security Operations Center Building, Operating, and Maintaining your SOC, vol. 1. Cisco Press, Indianapolis (2015)"},{"key":"18_CR12","doi-asserted-by":"publisher","unstructured":"Mutemwa, M., Mtsweni, J., Zimba, L.: Integrating a security operations centre with an organization\u2019s existing procedures, policies and information technology systems. In: 2018 International Conference on Intelligent and Innovative Computing Applications, ICONIC 2018, pp. 1\u20136 (2019). https:\/\/doi.org\/10.1109\/ICONIC.2018.8601251","DOI":"10.1109\/ICONIC.2018.8601251"},{"issue":"5","key":"18_CR13","doi-asserted-by":"publisher","first-page":"408","DOI":"10.47191\/ijcsrr\/V4-i5-13","volume":"4","author":"IPED Nugraha","year":"2021","unstructured":"Nugraha, I.P.E.D.: A review on the role of modern SOC in cybersecurity operations. Int. J. Current Sci. Res. Rev. 4(5), 408\u2013414 (2021)","journal-title":"Int. J. Current Sci. Res. Rev."},{"issue":"5","key":"18_CR14","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1007\/s38314-019-0050-4","volume":"14","author":"C Olt","year":"2019","unstructured":"Olt, C.: Establishing security operation centers for connected cars. ATZ Electron. Worldwide 14(5), 40\u201343 (2019)","journal-title":"ATZ Electron. Worldwide"},{"key":"18_CR15","doi-asserted-by":"crossref","unstructured":"Raithel, J.: Quantitative Forschung: Ein Praxiskurs (2008)","DOI":"10.1007\/978-3-531-91148-9"},{"key":"18_CR16","unstructured":"Sayegh, E.: Forbes magazine: predicting what 2022 holds for cybersecurity (2021). https:\/\/www.forbes.com\/sites\/emilsayegh\/2022\/01\/06\/predicting-what-2022-holds-for-cybersecurity\/?sh=7f58a5972b72"},{"key":"18_CR17","doi-asserted-by":"publisher","first-page":"27881","DOI":"10.1109\/ACCESS.2022.3157738","volume":"10","author":"D Shahjee","year":"2022","unstructured":"Shahjee, D., Ware, N.: Integrated network and security operation center: a systematic analysis. IEEE Access 10, 27881\u201327898 (2022)","journal-title":"IEEE Access"},{"key":"18_CR18","unstructured":"Sundaramurthy, S.C.: An anthropological study of security operations centers to improve operational efficiency (2017). http:\/\/scholarcommons.usf.edu\/etdscholarcommons.usf.edu\/etd\/6958"},{"key":"18_CR19","doi-asserted-by":"crossref","unstructured":"Sundaramurthy, S.C., Case, J., Truong, T., Zomlot, L., Hoffmann, M.: A tale of three security operation centers. In: Proceedings of the 2014 ACM Workshop on Security Information Workers, pp. 43\u201350 (2014)","DOI":"10.1145\/2663887.2663904"},{"key":"18_CR20","doi-asserted-by":"publisher","first-page":"227756","DOI":"10.1109\/ACCESS.2020.3045514","volume":"8","author":"M Vielberth","year":"2020","unstructured":"Vielberth, M., Bohm, F., Fichtinger, I., Pernul, G.: Security operations center: a systematic study and open challenges. IEEE Access 8, 227756\u2013227779 (2020)","journal-title":"IEEE Access"},{"key":"18_CR21","unstructured":"Zimmerman, C.: Ten Strategies of a World-Class Cybersecurity Operations Center (2014). https:\/\/www.mitre.org\/sites\/default\/files\/publications\/pr-13-1028-mitre-10-strategies-cyber-ops-center.pdf"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security and Privacy XXXVI"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-10684-2_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,12]],"date-time":"2022-07-12T07:10:38Z","timestamp":1657609838000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-10684-2_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022]]},"ISBN":["9783031106835","9783031106842"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-10684-2_18","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2022]]},"assertion":[{"value":"13 July 2022","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"DBSec","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"IFIP Annual Conference on Data and Applications Security and Privacy","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Newark, NJ","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"USA","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2022","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 July 2022","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 July 2022","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"36","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"dbsec2022","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/cs.iit.edu\/~dbsec2022\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"33","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"12","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"6","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"36% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}