Medium term13-24 MonthsLong term25-60 MonthsShort term6-12 MonthsTaking into account the current state of the organization environment there is a single area of concern at this point in time which needs to be addressed through a short-term remediation plans:%u2022 Access Control%u2022 Optimize existing Endpoint Security%u2022 Vulnerability Management%u2022 Patching Management%u2022 Privilege Management%u2022 Backup & Restore%u2022 Authentication Systems%u2022 Assess the current offerings and service provided to the organization in order to determine if the correct sources and level of information are being aggregated and correlated in order to identify advanced cyber threats that are able to bypass traditional solutions.%u2022 Research the feasibility and applicability of implementing the following solutions into the organization environment:1. Security Operation Center (SOC)2. Blue Team Services & Defensive CapabilityThese solutions may assist in the identification and detection of persistent malware in order to ensure the continuous improvement of cyber and information protection across the organization.%u2022 Research the feasibility and applicability of implementing the following solutions into the organization environment:1. Next Generation Technology (Predictive & Cognitive Cyber Security Operations Technology)2. Red Teams Services & Offensive Capability3. SASE + XDR + Unified AIdriven security operations platform%u2022 Develop an assessment program which includes well defined and relevant metrics and continuously assess the advanced threat detection solution for the following.%u2022 AI-driven security operations platform combining all mandatory SecOps ecosystem into a single unified AI-driven SecOps platform consist of: SIEM, EDR, XDR, ASM, SOAR, TIP, EDR, UEBA, ITDR, CDR & Management, Reporting & ComplianceEnterprise Cyber Security Resilienceb. Blue Team (Defensive)Dalam upaya meningkatkan postur keamanan siber, PT Pertamina Hulu Energi (PHE) telah mengembangkan Integrated Security Operation Center (iSOC) sebagai pusat monitoring, deteksi, dan respons ancaman keamanan siber. iSOC berperan sebagai pusat kendali Blue Team yang memungkinkan deteksi ancaman secara real-time, analisis insiden, serta respons otomatis terhadap serangan yang dapat mengganggu operasional bisnis.b. Blue Team (Defensive)In an effort to improve cybersecurity posture, PT Pertamina Hulu Energi (PHE) has developed the Integrated Security Operation Center (iSOC) as a center for monitoring, detecting, and responding to cybersecurity threats. iSOC acts as a Blue Team control center that enables real-time threat detection, incident analysis, and automated response to attacks that can disrupt business operations.HULU ENERGILaporan Keberlanjutan %u2022 Sustainability Report 328