The AARNet Security Operations Centre (SOC) is a purpose-built facility that provides the Australian research and education sector with a suite of capabilities for managing cyber security incidents. We provide 24/7 real-time monitoring and data analysis combined with incident co-ordination and remediation support services.
Our Security Incident and Event Management System (SIEM) proactively monitors your university’s traffic and captures and analyses millions of events 24/7.
The AARNet SIEM uses machine learning and automation to identify and prioritise security incidents and to help with activities such as threat hunting and preventative security measures.
The AARNet SIEM provides the sector with a common platform, enabling playbooks, scripts, actions and other threat intelligence to be shared for the benefit of all participating universities.
Incidents are investigated, triaged, and escalated to you for threat mitigation. We work with you to develop mitigation strategies and ensure threats are remediated quickly and effectively.
AARNet worked in partnership with several universities to design a centralised SOC that meets the unique needs of the research and education sector.
Our SOC is staffed by a highly-skilled team of security analysts and engineers trained to counter cyber threats in the university environment.
View your threat data and collaborate with our SOC team to fine tune your security via a customised workspace in the AARNet SIEM platform.
Our dedicated SOC support team understands research and education sector environments and provides all the on-boarding support you need.
Our SOC integrates with various threat intelligence sources globally across the sector, security community and government to share and receive timely and relevant IOCs (Indicators of Compromise).
The AARNet SIEM infrastructure is securely hosted across dual-redundant certified Australian based Data Centres for improved resilience.
One-off onboarding fee.
Based on the number of full-time (FTE) university staff (we don’t charge for students). It is predictable pricing, based on what matters most; protecting institution’s people and their data. Universities are not charged on log volume consumption.