- Home
- Contact
Contact
- Contact Info
Let’s Secure Your Business Together
Need help, have a question, or want to discuss a custom cybersecurity solution? Our experts are here and ready to assist you.
Get in Touch
Get in Touch with Our Team
What types of organizations can onboard with NCSOC?
NCSOC collaborates with a wide range of entities including government agencies, state-owned enterprises, ministries, critical infrastructure sectors, and private organizations that require national-level cybersecurity visibility and protection.
What cybersecurity technologies are used by NCSOC?
NCSOC utilizes an advanced SIEM platform built on the ELK stack (Elasticsearch, Logstash, Kibana) for real-time analytics and correlation. Endpoint Detection and Response is powered by SentinelOne EDR, while File Integrity Monitoring (FIM) and Web Application Firewall (WAF) solutions enhance visibility and proactive defense.
Does NCSOC provide 24×7 cybersecurity monitoring?
Yes. NCSOC operates 24×7 under Sri Lanka CERT, providing continuous real-time log correlation, incident detection, and response across SIEM, EDR, FIM, and WAF layers. Dedicated analysts ensure constant threat visibility and escalation readiness.
How can my organization join or onboard with NCSOC?
To join NCSOC, organizations must contact the NCSOC Operations Team through Sri Lanka CERT. A requirement gathering form will be shared to capture the organization’s monitoring needs. Upon submission, a tailored service quotation and integration plan will be provided based on the requirements.
What reports and deliverables are shared with onboarded entities?
NCSOC provides structured deliverables such as daily detection digests, weekly EDR threat summaries, SIEM activity overviews, and monthly comprehensive cybersecurity reports including MITRE ATT&CK mapping and recommended actions for risk reduction.