SOCIIA
Industrial SOC Automation through Artificial Intelligence
Agency
Instituto Nacional de Ciberseguridad - INCIBE
Lab
SCN
Area
#cybersecurity #AI #InmersiveAnalytics #jobefficiency
Years
2023 - 2026
Grant Number
Reto29
Partners
S2Grupos
Description
With SOCIIA, the creation of a Virtual Cybersecurity Analyst is proposed who has knowledge of public threat intelligence sources and knowledge of the events generated in the organization. Applying statistical and ML techniques for data processing such as, for example, threat modeling based on clustering algorithms, prioritization of alerts based on their degree of anomaly, natural language processing for the normalization of logs and TTPs, analysis of logs and events, crossing variables both specific to the events and the analysts' response, new algorithms and techniques will be generated that will allow the resulting artificial intelligence to process N1 events automatically and with great reliability.