Valtori information security control room (SOC)

Telecommunications information security services will be expanded in the future in order to obtain a better overall idea of the information security situation in government organisations. In this way, information security threats and deviations will be noticed better, and they will be more effectively anticipated.

The expanded information security threat detection system will monitor the network's internal traffic and traffic going out to the Internet. The overall system used will automatically create alarms when it detects possibly deviating or harmful traffic.

In the future, the information security control room (Security Operations Centre, SOC) forming part of the telecommunications information security services will collect alarms and, based on other threat information it has collected, will be able to efficiently react to information security incidents and overcome threats in co-operation with the information security managers of the client organisations. The SOC will analyse threats and deliver recommended measures and instructions to the information security managers of the client organisations.

The information security threat detection system and information security control room (SOC, Security Operations Centre) is used by around 30 organisations, and it will be taken into use by all central government organisations during 2016–2018.