The SecOps Research Team engages in a number of academic research activities. These topics change from semesters to semester but are all centered around the theme of incorporating simulation-based activities into cybersecurity programs in order to increase their effectiveness and student engagement.

The TU Mock SOC

A Security Operations Center (SOC) is a centralized facility or team responsible for monitoring, detecting, and responding to cybersecurity threats. It acts as the nerve center of an organization's security infrastructure, continuously analyzing network traffic, system logs, and other security data to identify and mitigate potential threats.

Key functions of a SOC include: 

• Threat detection: Using advanced tools and techniques to identify potential security breaches, such as malware attacks, data breaches, or unauthorized access.

• Incident response: Responding to security incidents in a timely and effective manner, containing the damage, and restoring normal operations.

• Security Monitoring: Continuously monitoring network traffic, system logs, and other security data to identify trends, vulnerabilities, and potential threats.

• Security Analysis: Analyzing security data to identify trends, vulnerabilities, and potential threats.

• Security Education: Providing security awareness training and education to help prevent security incidents.

The TU Mock SOC, run by the SecOps Research Team, plays a vital role by serving as a training lab environment for future SOC Analysts and Engineers. Here our team explores and develops SOC simulations in order to provide and immersive experience to those training to become cybersecurity professionals. We also provide opportunities for those who a curious to learn more about cybersecurity with a chance to gain experience in a hands-on way.