What are you looking for?

Improved accessibility mode

SURF strives for a website that is accessible to everyone. We are working on a full accessibility mode.
Vrouw met koptelefoon gefotografeerd op haar achterhoofd kijkt naar laptop waarvan het scherm onscherp is
News

SURFsoc service expanded with automatic response to cyber incidents

At the request of SURF members, the SURFsoc service is being expanded to include automatic intervention, enabling a faster and more collective response to cyber threats. A framework agreement for this new approach has been signed with DTX – DEFION Security. Over the past year, the cooperative has worked hard on this procurement process.

Collective and uniform organisation and rollout of detection and mitigation

Until now, the service has mainly focused on the analysis of log and network traffic. Members of the SURF cooperative have expressed the need for an integrated approach, allowing for quicker and more targeted responses to attacks. To meet this need, SURFsoc is evolving into a Managed Detection & Response (MDR) service that combines technology, expertise, and active response. This means that organisations will not only receive alerts but, where possible and desired, automatic action will also be taken.

DTX – DEFION Security has extensive experience in this field. The agreement with this partner marks the beginning of a new approach through which we respond to threats more collectively and uniformly. This means that institutions will need to organise less on an individual basis.

Van links naar rechts Bas de Gier (CFO, DTX), Hans Louwhoff (COO, Lid RvB SURF) & Dennis de Hoog (CTO, DEFION Security). Foto gemaakt door de Beeldredaktie

From left to right Bas de Gier (CFO, DTX), Hans Louwhoff (COO, Member RvB SURF) & Dennis de Hoog (CTO, DEFION Security). Photo: De Beeldredaktie

Further expanding the basic service from the market

The Managed Detection & Response (MDR) basic service aligns well with the needs of the institutions. Building on this, SURF will work together with the new supplier and the institutions in the coming period to develop additional functionalities. The aim is to further expand the security services available to institutions. Examples include the network sensor, and functionality to monitor critical devices connected to the network (operational technology, or OT).

Pilot migration with Windesheim University of Applied Sciences

From 1 October, Windesheim University of Applied Sciences will be the first to migrate to the new supplier. In this pilot, we will test the migration plan and adjust it where necessary. We will also assess whether the MDR service works well in practice before rolling it out further. The remaining 75 institutions using SURFsoc for 24/7 monitoring of their institution infrastructure will migrate in 2026.

About SURFsoc

In 2020, the Dutch education and research sector established SURFsoc in collaboration with SURF, with the goal of creating a more cyber-secure future for the entire sector. The ransomware attack on Maastricht University at the end of 2019 was the direct trigger for this initiative. The knowledge gained within SURFsoc is shared with all institutions connected to the SURF network, in order to collectively enhance resilience in education and research.

Want to know more about SURFsoc?

To the service page

Related topics: