Medici Moons is a next-generation SOC design that addresses the need for greater threat awareness, validation, rapid response, and remediation by improving the collection, curation, and analysis of information to arm security teams with actionable intelligence for better preparation for today -and tomorrow’s- cybersecurity risk. With its multiple SOCs, advanced sensors, and numerous potential technical innovations, the Medici Moons design will show that new technologies and updated tactics, techniques, and procedures will change the way we think about the future of cyber defense.
Named after the Galilean moons that surround Jupiter, Medici Moons reflects the innovative spirit that the great astronomer showed when he developed a high-powered telescope to view these previously unknown objects. But, instead of looking into actual space, we’re able to see things that are happening in cyberspace that could adversely impact a data center.
Medici Moons includes a distributed, operational-level cybersecurity operations center (CSOC) which manages and receives data from the tactical-level CSOC. The tactical CSOC is made up of an active, low-side enclave that provides initial collection and automated response, as well as a secondary passive, high-side enclave that provides out-of-band collection activities.
The design integrates the best of various levels of capabilities across physical and software-defined architectures to allow for a rapid threat response while automatically mitigating threats across physical, virtualized, and cloud-based infrastructures. It also provides actionable intelligence that lets teams anticipate, withstand, recover, and evolve from attacks.