Security Operation Center

SPIE enhances its Security Operation Center to offer early cyberattack detection

Published on 25 November 2024

Malakoff, 25 November 2024 – SPIE ICS, a French digital services subsidiary of SPIE, the independent European leader in multi-technical services in the areas of energy and communications, has announced the launch of its new enhanced and dynamic Security Operation Center (SOC). With improved surveillance of all the components of the IT system, it is able to detect malicious events at an earlier stage. This sovereign service uses solutions provided by the French software publisher Sekoia.io and is managed 24/7 by the SPIE ICS analysts working at Montbonnot, near Grenoble.

A solution backed up by a SIEM system[1] enabling it to handle all types of attack scenario from any source

The SPIE ICS dynamic and enhanced SOC provides an additional level of cyber surveillance by detecting attack signals from anywhere in the IT system. This is possible thanks to a SIEM solution, which complements the EDR[2] technology. By collecting and correlating logs[3], analysing behaviour and using CTI[4], the system can accurately and very quickly detect any behavioural anomaly. Once the attack is detected, the SOC experts from SPIE ICS conduct an analysis, with the help of a SOAR system[5] in order to identify the severity of the attack and implement the necessary measures as quickly as possible, in line with the customer’s security policy. Some of these remediation measures may be fully automated.

The Sekoia.io platform offers a better overview of the company infrastructure by reporting on all movements observed on a day-to-day basis. SPIE ICS augments this service with dashboards that are available online. These give its customers a multi-dimensional view of their cybersecurity, allowing them to control both the operational security level of their technical environment and compliance aspects. As a real operational security “control tower”, the dynamic SOC aims to provide CIOs with a support service that fits around their security policies. The proximity with the SPIE ICS teams of analysts and a dedicated governance service make it possible to provide customised support and an efficient organisational improvement service.

Offered as a SaaS[6], the SPIE ICS SOC is compatible with all technical environments and is based on a demand-driven approach so as to incorporate the company’s current and future needs.

A 100% French solution that strengthens the position of SPIE ICS as a sovereign player in IT systems cybersecurity 

In addition to the SPIE ICS teams of analysts and service centre infrastructure, both based in France, Sekoia.io is a recognised French player in the cybersecurity industry, which likewise has its infrastructure hosted in France, allowing it to guarantee the security and confidentiality of the data it receives. This hosting can also be offered in a SecNumCloud[7] environment, which meets the highest security standards of the French National Cybersecurity Agency (ANSSI).

SPIE ICS has set cybersecurity as one of its growth drivers for the next few years. With its CyberExpert label and as a qualified Cyber Security Auditor under the French General Security Regulations (RGS), SPIE ICS is making its cybersecurity mark across the entire digital value chain. Its position as a key, local actor in this field (with 60 sites in France) make this digital services company a preferred partner of intermediate-sized enterprises throughout France. Cyber security is included in all the SPIE ICS solutions and is offered across all its services, including unified communications, workstations, networks, data centres and data management.

As IT systems are becoming more complex and the number of attacks is increasing, often with severe financial and operational consequences, SPIE ICS is supporting an increasing number of customers in their cybersecurity strategy. We already nearly doubled our cybersecurity production in 2023 and have serious growth ambitions in this sector,” says Xavier Daubignard, Managing Director of SPIE ICS. “Our dynamic SOC is an essential component of this. Our partnership with Sekoia.io allows us to offer an enhanced, independent and customised service that meets the current cyber challenges facing intermediate-sized enterprises.

[1] System Information and Event Management system

[2] Endpoint Detection and Response

[3] Log: automatically generated and time-stamped documentation produced by an IT system or software solution

[4] Cyber Threat Intelligence

[5] Security Orchestration, Automation and Response

[6] SaaS: Software as a Service

[7] The ANSSI awards ANSSI Security Visas to solutions, products or services that demonstrate a high level of security and trust. These meet the SecNumCloud benchmark.

Contacts