The Defence department has issued a request for information on a cyber event management and reporting system for the cyber security operations centre of the Defence Signals Directorate.
It was a step towards buying such a system and asked participants to nominate suitable solutions, express their benefits and the proximate costs of their implementation.
In the document, the Defence Intelligence and Security Group said solutions must handle "substantial data rates" and allow operators to "view all reported or detected cyber events".
The system must be flexible to handle known formats and those yet to be conceived, "ingest" system logs, accept manual data entry and spit out the results such that it could be analysed.
The specification called for a system that enabled the formation of taskforces to work on a problem, "create new tasks relating to cyber events, assign tasks to staff or teams and link tasks to a workflow", the document said.
The successful solution will hold all its data for long periods of time and will work with other "knowledgebases" to enable staff to search across repositories and create statistical models of the data.
And the solution will work on commodity hardware and be future-proof to support "evolving business processes and the addition of new custom analytic tools".
Copyright © iTnews.com.au . All rights reserved.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.
