SentinelJC: An Open-Source Tool for Cyber Incident Management in a Military Institution

Autores/as

  • Henry Marino Chuquisengo Acosta Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Jhonny Paul Castro Basilio Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Carlos Quinto Huamán Universidad Privada Del Norte - (Pe)
  • Juan Godoy Caso Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú
  • Percy Fortunato Ochoa Castillo Instituto Científico Y Tecnológico Del Ejército - (Pe), Perú

DOI:

https://doi.org/10.18687/LACCEI2025.1.1.1157

Palabras clave:

Cybersecurity, Cybersecurity Incidents, Security Operations Center, NIST, Open Source Tools.

Resumen

Currently, organizations manage complex IT infrastructures characterized by a large number of interconnected devices. While interconnectivity provides operational advantages, it also complicates the control and detection of cyberattacks, increasing the likelihood of cybersecurity incidents. Such incidents can damage strategic objectives, cause financial losses, affect reputation, and steal confidential information. In a military institution, it is crucial to protect sensitive assets that may be targets for breaches of national security. These assets include not only strategic facilities but also classified information, advanced technological systems, and critical operational capabilities. In this context, this article presents SentinelJC, an open-source cybersecurity incident management tool that enables the Joint Command of the Armed Forces of Peru (CCFFAA) to manage events, incidents, and vulnerabilities based on the NIST framework with four key functions: prevention, detection, response, and recovery. Tools such as Security Onion and Wazuh are used for proactive threat detection, while iTop is employed for incident tracking and documented management. During a seven-day trial conducted to validate the tool, early detection of incidents and threats was achieved, allowing for optimized infrastructure security. This approach significantly contributed to reducing the risk of attacks and enhancing the response capability to cybersecurity incidents.

Descargas

Publicado

2025-04-09

Número

Vol. 1 Núm. 12 (2025): LACCEI 2025

Sección

Articles

Licencia

Derechos de autor 2025 LACCEI

Creative Commons License

Esta obra está bajo una licencia internacional Creative Commons Atribución-NoComercial 4.0.

Cómo citar

Chuquisengo Acosta, H. M., Castro Basilio, J. P., Quinto Huamán, C., Godoy Caso, J., & Ochoa Castillo, P. F. (2025). SentinelJC: An Open-Source Tool for Cyber Incident Management in a Military Institution. LACCEI, 1(12). https://doi.org/10.18687/LACCEI2025.1.1.1157

Artículos más leídos del mismo autor/a