PROCESS
ClearFocus conducted a review of business and technical processes from the existing SOC and identified a lack of clearly defined and documented roles, functions, and requirements which contributed to an environment where staff lacked clear authorities to implement the cybersecurity mission. ClearFocus staff conducted a review of applicable law, regulations, policy, and agency requirements, and mapped requirements to clearly defined roles and functions aligned to the NIST 800-181 Cybersecurity workforce framework. ClearFocus then developed tailored, repeatable cybersecurity processes leveraging technology to enhance overall SOC effectiveness, while also realizing efficiencies through automation of manual operations processes that enabled responses at machine speed.
RESULT
By clearly defining the mission, roles, responsibilities, functions, and requirements, ClearFocus was able to develop a Concept of Operations (CONOPS) and procedural documents to foster an environment where cybersecurity staff understood their roles and were able to take action on incidents and events. ClearFocus further helped by providing expert technical leadership to the teams to address and resolve lingering issues which had negatively impacted the cybersecurity mission in the past. This included providing leadership to security engineering, vulnerability management, threat intel analysis, situational awareness, audit log collection and monitoring, and incident response activities.
We are innovators. Our consultants have the right mix of talent, creativity, process and technology to ensure every initiative we undertake has successful outcomes and meets mission objectives.
