City of San Antonio Plans to Open First Security Operations Center

City of San Antonio Plans to Open First Security Operations Center

The city expects to share the new center with CPS Energy, San Antonio Water System and VIA Metropolitan Transit, according to the San Antonio Business Journal. For security purposes, the organizations’ data streams would be kept separate.

  • By Jessica Davis
  • Feb 06, 2019

The city of San Antonio plans to open its first security operations center in the coming year. The new center would help monitor the city’s vast computer infrastructure 24/7.

The city expects to share the new center with CPS Energy, San Antonio Water System and VIA Metropolitan Transit, according to the San Antonio Business Journal. For security purposes, the organizations’ data streams would be kept separate.

Local leaders are looking for a secure place to house the operations center.

“We’re still in the beginning stages considering a physical location, what types of capabilities we would like to have that we’d have to maintain,” said Patsy Boozer, chief information security officer at the city of San Antonio. “It’s more cost effective for us to have a shared concept.”

A security operations center, or SOC, is an office where agents monitor traffic in and out of a computer network around the clock, in real time. The agencies also plan to collaborate on an information sharing and analysis organization, in which they would share threat intelligence data with the goal of reducing the prevalence of malware.

The city of San Antonio has more than 12,000 employees, which means it needs to secure tens of thousands of internet-connected devices. CPS Energy’s grid infrastructure supports a power system across the county as the only local electricity provider, and San Antonio Water System plans to implement smart meters in the future, which will likely also be internet-connected.

The new center will likely leverage software with artificial intelligence that might be able to identify network traffic anomalies more quickly and alert agencies to potential problems.

According to Boozer, while all of these municipal agencies employ people to deflect outside attacks to computer infrastructure, bad actors trying to access infrastructure most commonly try to access computer systems via phishing emails.

“A lot of what we see come through are phishing attempts, but our employees have been well-trained,” Boozer said. "We even have a phishing notification system through our [Microsoft] Outlook to report it."

 

About the Author

Jessica Davis is the Associate Content Editor for 1105 Media.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • New Research Shows a Continuing Increase in Ransomware Victims

    GuidePoint Security recently announced the release of GuidePoint Research and Intelligence Team’s (GRIT) Q1 2024 Ransomware Report. In addition to revealing a nearly 20% year-over-year increase in the number of ransomware victims, the GRIT Q1 2024 Ransomware Report observes major shifts in the behavioral patterns of ransomware groups following law enforcement activity – including the continued targeting of previously “off-limits” organizations and industries, such as emergency hospitals. Read Now

  • OpenAI's GPT-4 Is Capable of Autonomously Exploiting Zero-Day Vulnerabilities

    According to a new study from four computer scientists at the University of Illinois Urbana-Champaign, OpenAI’s paid chatbot, GPT-4, is capable of autonomously exploiting zero-day vulnerabilities without any human assistance. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.” 3