SentinelJC: An Open-Source Tool for Cyber Incident Management in a Military Institution

Authors

  • Henry Marino Chuquisengo Acosta Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Jhonny Paul Castro Basilio Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Carlos Quinto Huamán Universidad Privada Del Norte - (Pe)
  • Juan Godoy Caso Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Percy Fortunato Ochoa Castillo Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú

DOI:

https://doi.org/10.18687/LACCEI2025.1.1.1157

Keywords:

Cybersecurity, Cybersecurity Incidents, Security Operations Center, NIST, Open Source Tools.

Abstract

Currently, organizations manage complex IT infrastructures characterized by a large number of interconnected devices. While interconnectivity provides operational advantages, it also complicates the control and detection of cyberattacks, increasing the likelihood of cybersecurity incidents. Such incidents can damage strategic objectives, cause financial losses, affect reputation, and steal confidential information. In a military institution, it is crucial to protect sensitive assets that may be targets for breaches of national security. These assets include not only strategic facilities but also classified information, advanced technological systems, and critical operational capabilities. In this context, this article presents SentinelJC, an open-source cybersecurity incident management tool that enables the Joint Command of the Armed Forces of Peru (CCFFAA) to manage events, incidents, and vulnerabilities based on the NIST framework with four key functions: prevention, detection, response, and recovery. Tools such as Security Onion and Wazuh are used for proactive threat detection, while iTop is employed for incident tracking and documented management. During a seven-day trial conducted to validate the tool, early detection of incidents and threats was achieved, allowing for optimized infrastructure security. This approach significantly contributed to reducing the risk of attacks and enhancing the response capability to cybersecurity incidents.

Downloads

Published

2025-04-09

Issue

Vol. 1 No. 12 (2025): LACCEI 2025

Section

Articles

License

Copyright (c) 2025 LACCEI

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

How to Cite

Chuquisengo Acosta, H. M., Castro Basilio, J. P., Quinto Huamán, C., Godoy Caso, J., & Ochoa Castillo, P. F. (2025). SentinelJC: An Open-Source Tool for Cyber Incident Management in a Military Institution. LACCEI, 1(12). https://doi.org/10.18687/LACCEI2025.1.1.1157

Most read articles by the same author(s)