Defining SOC Hardware and Software requirements
docx
keyboard_arrow_up
School
Grand Canyon University *
*We aren’t endorsed by this school
Course
ITT425
Subject
Information Systems
Date
Feb 20, 2024
Type
docx
Pages
7
Uploaded by SuperHumanViperPerson191
1
Defining SOC Hardware and Software requirements
In the dynamic landscape of cybersecurity, safeguarding sensitive information and ensuring data integrity is a huge concern for organizations like Across the States Banks. Network Security Operations Centers (SOCs) play a crucial role in this aspect, requiring a meticulous selection of hardware and software tools. This proposal aims to recommend and evaluate solutions for SOC needs at Across the States Banks, focusing on the integration of hardware and software to fortify network security. The hardware and software
selections will be outlined in a chart, including an overview of the product, technical specifications, supply costs, and a cost-benefit analysis.
2
Name
Overview/Need
Specs
Supply Costs
Cost Benefit Analysis
Justification and Explanation
Cisco NGIPS
L-
FP3925E-
TAC-3Y
Secure IPS product functioning as a next-
generation intrusion prevention system (NGIPS) with 35,000+ built-in IPS rules, capable of detecting and blocking anomalous traffic. Can deploy as hardware or in a virtual machine. Embedded DNS, IP, and URL security intelligence. File sandboxing. Integrates Snort 3.0. Uses
signature and anomaly detection.
●
Can deploy as hardware or in a virtual machine
●
Detect fileless threats
●
Embedded DNS, IP and URL security intelligence
●
Threat analysis and scoring
●
File sandboxing
●
Integrates Snort 3.0
●
Uses signature and anomaly detection
Hardware price: $7,200 - License cost: $2,226
per appliance
Assessing benefits in terms of threat detection and prevention. Consideration of integration with existing infrastructure.
Constantly evolving threat landscape demands advanced detection mechanisms and a flexible solution adaptable to emerging cybersecurity challenges.
Cisco Secure Firewall: Firepower 1120 Security Appliance Enhances SOC capabilities by monitoring and preventing security threats, offering real-time threat intelligence, and automated responses. Covers intrusion detection
and prevention methods, response mechanisms, scalability, and integration
capabilities.
Covers intrusion detection and prevention methods, response mechanisms, scalability, and integration capabilities. Specs include: ●
ASA Software
●
8-Gigabit Ethernet Ports
●
4 SFP Ports
●
4.5 Gbps Throughput
Hardware price: $2,128 - License cost: Ranges from $2,117.51-
$5,565.53
Detailed analysis of
potential threats addressed. Scalability and integration capabilities. Automated response effectiveness.
Given the comprehensive coverage, scalability, and real-time threat intelligence, Cisco Secure Firewall stands as the primary choice, ensuring robust protection for Across the
States Banks.
Wireshark
A powerful network Wireshark provides real-time Free Open Essential tool for Wireshark, being open-
3
protocol analyzer assisting analysts in dissecting network traffic, identifying anomalies, and
diagnosing network issues. Offers real-time packet analysis with customizable filters across
diverse protocols.
packet analysis with customizable filters across diverse protocols. Its user-
friendly interface, advanced filtering, and community support make it a versatile tool for decoding and analyzing network data, adaptable to evolving security needs on various operating systems.
Source Software
real-time packet analysis. Adaptability to evolving security needs. Community support
and continuous development
source, provides an efficient and versatile solution for network protocol analysis, ensuring continuous adaptation to evolving security requirements.
Dell PowerEdg
e R760xd2 Rack Server
Backbone of SOC's expanded infrastructure, providing necessary processing power, memory, and storage for efficient security monitoring and analysis.
●
3.5" Chassis with up to 24 SAS/SATA Drives, PERC 11, GPU Capable, 1 or 2 CPU ●
Intel® Xeon® Gold 5411N 1.9G, 24C/48T, 16GT/s, 45M Cache, Turbo, HT (165W) DDR5-
4400 ●
16GB RDIMM, 4800MT/s Single Rank ●
C1, No RAID for HDDs/SSDs
Hardware price: $16,734 License cost: $59.40
Consideration of scalability. Efficient processing
power and memory
for security analysis. Cost-effectiveness.
The Dell PowerEdge R760xd2 Rack Server, with its robust specifications, offers an ideal foundation for SOC
infrastructure, ensuring scalability and efficient processing power for security monitoring.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
4
N-Able Cove
Cove offers robust tools for efficient data backup and recovery, ensuring the protection and resilience of critical data. Streamlines backup processes and offers reliable recovery mechanisms, enhancing the overall data security strategy.
●
Appliance-free, direct-
to-cloud backup for virtual & physical servers, workstations,
applications, and databases.
●
Backup storage in our
worldwide private cloud is included in your price. Keep data in region with 30 data centers.
$27 per month per user
Thorough assessment of data
backup efficiency. Evaluation of recovery mechanisms. Cost per user vs. data protection benefits.
N-Able Cove, with its efficient data backup and recovery tools, emerges as the primary choice, ensuring robust protection and resilience
of critical data for Across
the States Banks.
5
CISCO 4331 Router
A versatile networking device designed for medium-sized businesses, branch offices, and enterprise networks. Combines high-
performance routing with integrated services, such as security features, voice
and video support, in a modular and scalable architecture.
Maximum LAN Data Rate: 100 Mbps Form Factor: Rack-Mountable Network Connectivity: Wired-Ethernet (RJ-45) Type: Routers Network Management Type: Fully Managed Model: Cisco ISR 4331 MPN: ISR4331/K9 V04 Hardware price: $1,080 License price: $83 per year
Scalability for medium-sized businesses. Integration of security features. Modular and scalable architecture.
Cisco 4331 Router, with its versatile networking capabilities, stands as the optimal choice, providing a balance between high-
performance routing and
integrated security features.
6
Cisco Business CBS250-
48P-4G Smart Switch
The Cisco Business CBS250-48P-4G switch is
the next generation of affordable, smart switch that combines powerful network performance, security, and reliability with a comprehensive suite of network features for a solid business network.
48 Port GE | PoE | 4x1G SFP Hardware price:
$1,095
Network performance, security, and reliability. Power over Ethernet (PoE) capabilities. Comprehensive suite of network features.
The Cisco Business CBS250-48P-4G Smart Switch is recommended for Across the States Banks' SOC due to its powerful performance, supporting 48 Gigabit Ethernet ports, and its cost-effective solution with Power over Ethernet (PoE) capabilities. In conclusion, the hardware and software recommendations for Across the States Banks' SOC align with the organization's need for robust network security. The primary choice for each solution is carefully selected based on factors such as threat detection capabilities, scalability, integration features, and cost-effectiveness. The Cisco NGIPS, Cisco Secure Firewall, Wireshark, Dell PowerEdge R760xd2 Rack Server, N-Able Cove, CISCO 4331 Router, and Cisco Business CBS250-48P-4G Smart Switch collectively form a comprehensive suite, addressing different aspects of network security and SOC infrastructure. The cost benefit analysis delves into the financial considerations, ensuring that the proposed solutions provide optimal value for the investment made.
The primary choices are grounded in the specific needs and budget constraints of Across the States Banks. The constantly evolving threat landscape requires adaptive solutions, and the recommended hardware and software options are equipped to meet the dynamic challenges posed by emerging cybersecurity threats. The judicious selection of these solutions not only strengthens the organization's security posture but also creates a foundation for future-proofing the SOC against evolving threats, thereby safeguarding sensitive information and ensuring the resilience of Across the States Banks' network infrastructure.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
7
References
Amazon.com: Cisco 4331 Router 3 ports - 6 slots - desktop, ... (n.d.-a). https://www.amazon.com/CISCO-4331-Router-Ports-
Rack-mountable/dp/B00Q4E8K80
Amazon.com: Cisco Business CBS250-48P-4G smart switch | 48 port ... (n.d.-b). https://www.amazon.com/CISCO-
DESIGNED-Business-CBS250-48P-4G-Protection/dp/B08KSVX67S
Amazon.com: Cisco Secure Firewall: Firepower 1120 security appliance ... (n.d.-c). https://www.amazon.com/Cisco-Systems-
Fpr1120-Asa-K9-Network-Device/dp/B085VN9VC8
Cove: Cloud backup solution for msps and it teams
. N. (2023, November 20). https://www.n-able.com/products/cove-data-
protection/backup
Dell Poweredge R760xd2 Rack Server: Dell USA
. Dell. (n.d.). https://www.dell.com/en-us/shop/servers-storage-and-
networking/poweredge-r760xd2-rack-server/spd/poweredge-r760xd2/pe_r760xd2_16753_vi_vp?configurationid=cb95ca1b-
c1f5-4c7d-913f-79d94ef8a93e
Limited, R. S. (n.d.). Cisco GPL 2024
. NGIPS Price - Cisco Global Price List. https://itprice.com/cisco-gpl/ngips
Samson, R. (2022, August 5). Top 10 intrusion detection and Prevention Systems
. ClearNetwork, Inc. https://www.clearnetwork.com/top-intrusion-detection-and-prevention-systems/