Creating Local Security Operation Center


Feb. '17CompletedAug. '19

Implementing Partners

Leader: Bulatsa


Cyber security is a top priority for Bulgaria at national level and BULATSA is part of the critical infrastructures organisations that are monitored and audited by the Civil Aviation Administration and National Security Agency.

The objective of the Implementation Project is to build a platform (hardware, software, people, procedures), which provides a reliable cyber defence of IT infrastructure of BULATSA against both conventional and modern advanced cyber threats. The solution will be based on an intelligence-driven security strategy and will incorporate SIEM (Security Information and Event Management) approach. The solution will have a distributed architecture that allows effective protection of the entire IT infrastructure of BULATSA, comprising its five geographical locations: central location in Sofia and 4 Area Control Centres (Varna, Burgas, Plovdiv and Gorna Oryahovitsa). This platform will enable to build a Security Operations Centre (SOC) in BULATSA based on it.

BULATSA SOC is independent from the Eurocontrol EATM-CERT (European ATM Computer Emergency Response Team) and will be built and functioning no matter if the EATM-CERT exists or not.

Countries involved

Additional Information

  • Project Type: Air Navigation Service Provider
  • CEF Call Year: 2016
  • Civil/Military: Civil
  • Multistakeholder: No
  • Main AF: AF5 - Initial System Wide Information Management
  • Sub AF: S-AF 5.2 - SWIM Technical Infrastructure and Profiles
  • Progress Percentage: 100%