Cyber Operations Center

IronNet's team of expert offensive and defensive cybersecurity operators in the
CyOC (Cyber Operations Center) has experience defending both private and
public sectors against advanced threats. These teams provide
monitoring and threat hunting in our customers’ networks.

What we do

  • Hunt Collaboration

    IronNet’s Hunt Team is comprised of highly technical security analysts with real-world operational experience in defending highly secure networks. Our analysts leverage your IronDefense platform to work side-by-side with your security operations personnel to detect and mitigate threats identified in your network.

  • Event Notifications

    Our CyOC team continually monitors and researches events and anomalies found in customer networks. The IronNet Customer Portal is used to notify customers of IronDefense findings of interest related to a customer’s network. Notification is distributed to members determined by the customer and includes full event analysis and mitigation recommendation.

  • Rule Deployment

    The CyOC’s Threat Intelligence analysts support customer operations by providing context to manual hunt operations and alert triage. Our team produces tailored threat information to customer instances of IronDefense through Threat Intelligence Rule updates based on current suspicious and malicious Indicators of Compromise (IoC), IronDome insights, emerging threat research, and results of research by our company’s malware reverse engineers.

  • Reachback Support

    Our CyOC offers industry-leading remote event collaboration, incident response, cybersecurity expertise, and platform support for IronDefense related security operations.

  • Reporting

    Periodic insight reports are provided to customers on threat trends correlated to the customer’s network and sector. These reports provide summarized and actionable IoCs associated with high risk network behaviors mapped to the Cyber Kill Chain to identify the stage and progression of the threat. These reports also include a detailed list of resulting Threat Intelligence Rules deployed to customer instances of IronDefense.

  • Custom Hunt Tracking

    Introductory and advanced training for end-users on analytics, alerts, entity enrichment, hunting, and network defense techniques are available. Periodic on-site side-by-side hunt operations, threat identification techniques, and review of newly implemented product features are also available.

Who’s behind the scenes defending your network?

Cybersecurity is largely a technical field with battles every day being waged on a field of networks and
algorithms. But humans are the real heroes here at IronNet. Get to know the frontline expert analysts and
hunters in our Cyber Operations Center (CyOC).

  • Anthony

    Anthony Grenga

    Director of Cyber Operations Center (CyOC)

  • RebeccaCYoC

    Rebecca Blair

    Director of Internal SOC Operations

  • Billy

    Billy Trobbiani

    IronNet Hunt Operations Specialist

The IronLens
Monthly CyOC Report

At IronNet, we believe Collective Defense can act as a force multiplier for those working behind the scenes at SOCs across sectors by collaborating in a real-time ecosystem. We publish a monthly report from the CyOC to highlight the cybersecurity threats that are being used to steal data and intellectual property and to compromise critical infrastructure and national security.