Airbus OT Security Operation Center
- Project
- 17032 CyberFactory#1
- Description
Detect complex cyber-physical threats, provide enriched alerts for security analysts decision, optimise incident response.
- Contact
- Matthias Glawe, Airbus Cybersecurity Germany
- matthias.glawe@airbus.com
- Technical features
Input(s):
- Network Logs
- IDS alerts
- IoCs
Main feature(s):
- Log correlation & analysis
- Alert enrichment
- IoC sharing
Output(s):
- Enriched Alerts
- Mitigation plans
- Incident Response
- Integration constraints
- SIEM/SOAR (e.g.: QRadar, Splunk, the Hive, …)
- OT NIDS (e.g.: Nozomi, Foescout, …)
- Targeted customer(s)
Cybersecurity operators and analysts.
- Conditions for reuse
- For research purpose: Collaboration Agreement
- For business purpose: Managed Security Service Contract
- Confidentiality
- Public
- Publication date
- 18-05-2022
- Involved partners
- Airbus Cybersecurity GmbH (DEU)