SOC challenges and solutions: interview with Stefano Marazzi
Defending companies from cyber attacks is increasingly challenging: in this regard, STIM Tech Group has decided to invest in this field, providing its customers with a series of solutions and services for Corporate Cyber Security.
Stefano Marazzi, CEO of STIM Tech Group, talked about it on the pages of Cyber Ducks, a training and dissemination platform on the theme of Cyber Security: below is an excerpt from the interview.
Stefano Marazzi, CEO of STIM Tech Group
How was STIM born and how was the Cyber Security department structured?
With a history of 35 years, STIM Tech Group is a System Integrator that, thanks to the continuous acquisition of new skills, has strengthened and expanded the solutions offered and the customer portfolio. To meet the growing needs of IT security, we have defined a specific Business Unit dedicated to Cyber Security.
The new BU, located at the headquarters in Milan Via Messina, is structured with a team of highly qualified experts, including an In-House Competence Center and a modern Research and Development Laboratory (Lab). The investment also involved the implementation of a 24/7 operational Security Operations Center (SOC), equipped with advanced technologies for monitoring and managing our customers' IT security activities.
How did the idea of a SOC service in STIM come about?
The idea of creating a SOC service in STIM was born from the dual need of a growing market and to meet the demand of some of our customers in the financial sector for the protection of IT infrastructure. The responsibility entrusted to our Chief Information Security Officer (CISO) Alberto Perini, an expert in the creation and management of SOCs, has allowed us to offer a high-quality monitoring and management service for IT security activities tailored to the needs of our customers.
What is the technological approach of the SOC? What are the services that STIM will focus on?
We have an innovative and holistic approach to security as a fundamental strategic element for the competitiveness of companies. We combine the expertise in Enterprise Network, Physical & Infrastructure Security and IT Managed Services typical of STIM's portfolio, with strategic collaborations with technology partners and the most advanced security technologies to protect our customers' IT (corporate) and OT (industrial) infrastructures.
We focus on vertical expertise to address emerging challenges in the field of cybersecurity.
One of the main areas of focus of our SOC is Threat Intelligence, i.e. the ability to collect, analyze and interpret threat intelligence in real time. This allows us to identify and mitigate potential threats in a timely manner, offering a proactive monitoring service.
In addition, given the entry into force of the DORA (Defense and Offense Response Action) regulation, our SOC is also focusing on Red Team services, which allow you to perform attack simulations and penetration tests to assess the security of your systems and identify any vulnerabilities that need to be remediated.
We are developing specific expertise for vertical markets such as IoT (Internet of Things) and 5G, which require particularly advanced security solutions due to the unique challenges they present. In this context, our SOC offers targeted services to ensure the protection and security of networks and connected devices, preventing potential attacks and breaches.
How do you see the future of this service?
The evolution of cybercrime has a strong impact on the structure of companies; We look to the future with optimism in a necessary path of evolution and growth characterized by the continuous increase in technological complexity. The future of our SOC service will be increasingly oriented towards the as-a-service model, where the team acts proactively in monitoring our customers' digital environment; a modern security center that uses SIEM logs and analytics, enriching them with data from endpoints and the network, evolving towards a model based on a network between on-prems, cloud and cloud-native apps, enabling us to detect suspicious activity that was previously unknown and ensuring the security of business information for our customers.
Contact us to find out more: https://www.stimtlc.it/contatti