Architectural Framework for Threat Intelligence Integration with SIEM and SOAR in Hybrid Cloud Security Environments
Author(s): Charan Shankar Kummarapurugu
Publication #: 2411031
Date of Publication: 13.03.2024
Country: US
Pages: 1-9
Published In: Volume 10 Issue 2 March-2024
Abstract
This paper presents an architectural framework for integrating threat intelligence with Security Information and Event Management (SIEM) and Security Orchestration, Au- tomation, and Response (SOAR) systems in multi-cloud, hybrid cloud, and on-premises security environments. The proposed architecture aims to enhance threat detection, incident response, and automation by combining threat intelligence feeds with SIEM and SOAR capabilities. Experimental results indicate a significant improvement in response times and threat visibility, offering a novel approach to managing security threats effectively across different infrastructure models.
Keywords: Threat Intelligence, SIEM, SOAR, Multi-Cloud, Hybrid Cloud, On-Premises, Security, Incident Response, Au- tomation.
Download/View Count: 216
Share this Article