iSOC - Upstream Security IntelligenceMonitoring, Correlation AlertsAd Hoc Search & InvestigateCustom Dashboard and ReportsAnalytics and VisualizationDev PlatformAsset InfoEmployee InfoThreat FeedsApplications Data StoresExternal Looksup / EnrichmentIdentitySecurityEndpoint SecurityNetwork SecurityPerimeter SecuritySecure ConnectivityWorkload SecurityApplication SecurityReal-timeSecurity TelementaryPT Pertamina Hulu Energi mengimplementasikan strategi Blue Team melalui iSOC (integrated Security Operations Center) yang berfungsi sebagai pusat operasi keamanan siber terintegrasi. Arsitektur ini dibangun secara berlapis untuk memberikan pertahanan komprehensif terhadap ancaman siber.Fondasi sistem keamanan terdiri dari tujuh pilar utama: Identity Security dengan MFA, Endpoint Security dengan User EDR, Network Security (NAC dan VPN), Perimeter Security (Firewall), Secure Connectivity (SDWAN), Workload Security (Server EDR), dan Application Security (WAF). Lapisan ini mengirimkan data telemetri keamanan secara real-time ke iSOC untuk analisis dan respons.iSOC mengoperasikan tiga layanan keamanan terpadu: MDR Services untuk deteksi dan respons terhadap ancaman aktif, MVM Services untuk pengelolaan kerentanan berkelanjutan, dan MAS Services untuk keamanan aplikasi. Layanan-layanan ini diperkuat dengan teknologi canggih seperti Security Analytics, SOAR (Security Orchestration, Automation, and Response), UEBA (User & Entity Behavior Analytics), dan Threat Intelligence Platform.PT Pertamina Hulu Energi implements the Blue Team strategy through iSOC (Integrated Security Operations Center) which functions as an integrated cybersecurity operations center. This architecture is built in layers to provide comprehensive defense against cyber threats.The foundation of the security system consists of seven main pillars: Identity Security with MFA, Endpoint Security with User EDR, Network Security (NAC and VPN), Perimeter Security (Firewall), Secure Connectivity (SD-WAN), Workload Security (Server EDR), and Application Security (WAF). This layer sends realtime security telemetry data to the iSOC for analysis and response.iSOC operates three integrated security services: MDR Services for active threat detection and response, MVM Services for continuous vulnerability management, and MAS Services for application security. These services are enhanced by advanced technologies such as Security Analytics, SOAR (Security Orchestration, Automation, and Response), UEBA (User & Entity Behavior Analytics), and Threat Intelligence Platform.01020304050607080910Generating Shared Value for the Community Menciptakan Nilai Bersama bagi Masyarakat11 PT Pertamina Hulu Energi 329