{"id":"https://openalex.org/W4406755163","doi":"https://doi.org/10.1109/access.2025.3532951","title":"Empowering Security Operation Center With Artificial Intelligence and Machine Learning\u2014A Systematic Literature Review","display_name":"Empowering Security Operation Center With Artificial Intelligence and Machine Learning\u2014A Systematic Literature Review","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4406755163","doi":"https://doi.org/10.1109/access.2025.3532951"},"language":"en","primary_location":{"id":"doi:10.1109/access.2025.3532951","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3532951","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2025.3532951","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5061159372","display_name":"Mohamad Khayat","orcid":"https://orcid.org/0000-0002-1774-786X"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":true,"raw_author_name":"Mohamad Khayat","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-1774-786X","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5066524623","display_name":"Ezedin Barka","orcid":"https://orcid.org/0000-0002-3995-7198"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Ezedin Barka","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-3995-7198","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022074764","display_name":"Mohamed Adel Serhani","orcid":"https://orcid.org/0000-0001-7001-3710"},"institutions":[{"id":"https://openalex.org/I29891158","display_name":"University of Sharjah","ror":"https://ror.org/00engpz63","country_code":"AE","type":"education","lineage":["https://openalex.org/I29891158"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Mohamed Adel Serhani","raw_affiliation_strings":["College of Computing and Informatics, University of Sharjah, Sharjah, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0001-7001-3710","affiliations":[{"raw_affiliation_string":"College of Computing and Informatics, University of Sharjah, Sharjah, United Arab Emirates","institution_ids":["https://openalex.org/I29891158"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020497805","display_name":"Farag Sallabi","orcid":"https://orcid.org/0000-0002-2887-5410"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Farag Sallabi","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-2887-5410","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028978354","display_name":"Khaled Shuaib","orcid":null},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Khaled Shuaib","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0003-1397-0420","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5058952543","display_name":"Heba M. Khater","orcid":"https://orcid.org/0000-0002-6394-3482"},"institutions":[{"id":"https://openalex.org/I201726411","display_name":"United Arab Emirates University","ror":"https://ror.org/01km6p862","country_code":"AE","type":"education","lineage":["https://openalex.org/I201726411"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Heba M. Khater","raw_affiliation_strings":["College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates"],"raw_orcid":"https://orcid.org/0000-0002-6394-3482","affiliations":[{"raw_affiliation_string":"College of Information Technology, United Arab Emirates University, Al Ain, United Arab Emirates","institution_ids":["https://openalex.org/I201726411"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5061159372"],"corresponding_institution_ids":["https://openalex.org/I201726411"],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":53.5372,"has_fulltext":false,"cited_by_count":46,"citation_normalized_percentile":{"value":0.99936892,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"13","issue":null,"first_page":"19162","last_page":"19197"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.6342999935150146,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.6342999935150146,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6878556609153748},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5105687379837036},{"id":"https://openalex.org/keywords/center","display_name":"Center (category theory)","score":0.5009560585021973},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3496930003166199}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6878556609153748},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5105687379837036},{"id":"https://openalex.org/C2779463800","wikidata":"https://www.wikidata.org/wiki/Q5062222","display_name":"Center (category theory)","level":2,"score":0.5009560585021973},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3496930003166199},{"id":"https://openalex.org/C8010536","wikidata":"https://www.wikidata.org/wiki/Q160398","display_name":"Crystallography","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2025.3532951","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3532951","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:c0ca62ce3da542a7a860fd5acc4bea25","is_oa":true,"landing_page_url":"https://doaj.org/article/c0ca62ce3da542a7a860fd5acc4bea25","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 13, Pp 19162-19197 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2025.3532951","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3532951","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":131,"referenced_works":["https://openalex.org/W2005501262","https://openalex.org/W2593932391","https://openalex.org/W2737569152","https://openalex.org/W2760313715","https://openalex.org/W2767721397","https://openalex.org/W2800335238","https://openalex.org/W2869624149","https://openalex.org/W2887799690","https://openalex.org/W2888191522","https://openalex.org/W2891055653","https://openalex.org/W2894279555","https://openalex.org/W2903912339","https://openalex.org/W2909423358","https://openalex.org/W2909729792","https://openalex.org/W2909757968","https://openalex.org/W2913553856","https://openalex.org/W2947243964","https://openalex.org/W2952657082","https://openalex.org/W2956869117","https://openalex.org/W2963832721","https://openalex.org/W2964634704","https://openalex.org/W2966196469","https://openalex.org/W2967713114","https://openalex.org/W2974504164","https://openalex.org/W2990619902","https://openalex.org/W2990683449","https://openalex.org/W3000539293","https://openalex.org/W3000666967","https://openalex.org/W3007432608","https://openalex.org/W3007705818","https://openalex.org/W3010798825","https://openalex.org/W3014091682","https://openalex.org/W3031041923","https://openalex.org/W3043081902","https://openalex.org/W3043354127","https://openalex.org/W3081093222","https://openalex.org/W3082363965","https://openalex.org/W3084881928","https://openalex.org/W3103544495","https://openalex.org/W3108159510","https://openalex.org/W3111734087","https://openalex.org/W3120977637","https://openalex.org/W3131002964","https://openalex.org/W3131542938","https://openalex.org/W3134211737","https://openalex.org/W3144067442","https://openalex.org/W3155153535","https://openalex.org/W3159364646","https://openalex.org/W3170947715","https://openalex.org/W3174167500","https://openalex.org/W3179788886","https://openalex.org/W3183268685","https://openalex.org/W3193710092","https://openalex.org/W3196518598","https://openalex.org/W3198465620","https://openalex.org/W3200587221","https://openalex.org/W3204378102","https://openalex.org/W3206958873","https://openalex.org/W3208700297","https://openalex.org/W3212401499","https://openalex.org/W3213528067","https://openalex.org/W3215541565","https://openalex.org/W4200000055","https://openalex.org/W4200519751","https://openalex.org/W4205462435","https://openalex.org/W4210258530","https://openalex.org/W4210262502","https://openalex.org/W4211076842","https://openalex.org/W4220837030","https://openalex.org/W4220954340","https://openalex.org/W4220955296","https://openalex.org/W4281618023","https://openalex.org/W4281727634","https://openalex.org/W4283365650","https://openalex.org/W4283662573","https://openalex.org/W4285357590","https://openalex.org/W4286375281","https://openalex.org/W4297792532","https://openalex.org/W4306957610","https://openalex.org/W4308081858","https://openalex.org/W4310762541","https://openalex.org/W4310931642","https://openalex.org/W4311693894","https://openalex.org/W4312306882","https://openalex.org/W4313116287","https://openalex.org/W4313260171","https://openalex.org/W4318148171","https://openalex.org/W4365788228","https://openalex.org/W4376606841","https://openalex.org/W4380079770","https://openalex.org/W4381893318","https://openalex.org/W4382050732","https://openalex.org/W4382865033","https://openalex.org/W4386379416","https://openalex.org/W4386969719","https://openalex.org/W4387146071","https://openalex.org/W4387163625","https://openalex.org/W4387394327","https://openalex.org/W4387394709","https://openalex.org/W4387432317","https://openalex.org/W4387713329","https://openalex.org/W4388425998","https://openalex.org/W4388563480","https://openalex.org/W4388571717","https://openalex.org/W4388626146","https://openalex.org/W4388867285","https://openalex.org/W4388947030","https://openalex.org/W4389065223","https://openalex.org/W4389304845","https://openalex.org/W4389372138","https://openalex.org/W4389387669","https://openalex.org/W4391486513","https://openalex.org/W4391490904","https://openalex.org/W4391948826","https://openalex.org/W4392402537","https://openalex.org/W4392529044","https://openalex.org/W4392941930","https://openalex.org/W4392980744","https://openalex.org/W4393620306","https://openalex.org/W4394712905","https://openalex.org/W4394935822","https://openalex.org/W4396993846","https://openalex.org/W4398794784","https://openalex.org/W4399187206","https://openalex.org/W4400491462","https://openalex.org/W4400499510","https://openalex.org/W4400579607","https://openalex.org/W4400799685","https://openalex.org/W4400928136","https://openalex.org/W4403123403","https://openalex.org/W6739544439"],"related_works":["https://openalex.org/W2961085424","https://openalex.org/W4306674287","https://openalex.org/W4387369504","https://openalex.org/W3046775127","https://openalex.org/W4394896187","https://openalex.org/W3170094116","https://openalex.org/W4386462264","https://openalex.org/W3107602296","https://openalex.org/W4364306694","https://openalex.org/W4312192474"],"abstract_inverted_index":{"Organizational":[0],"cybersecurity":[1,250],"relies":[2],"heavily":[3],"on":[4,50],"security":[5,212],"operation":[6],"centers":[7],"(SOCs)":[8],"to":[9,32,40,47,71,126,149,220,230],"protect":[10],"businesses":[11],"and":[12,23,53,64,78,85,92,116,131,134,146,152,158,175,190,197,226,241,252],"institutions":[13],"from":[14,142],"emerging":[15],"cyber":[16,26],"threats.":[17],"In":[18,160],"recent":[19],"years,":[20],"the":[21,42,69,94,118,123,205,222,249],"complexity":[22],"sophistication":[24],"of":[25,97,207,224],"threats":[27],"have":[28,68,155],"increased,":[29],"pushing":[30],"SOCs":[31,38,73],"their":[33,48,137,198],"limits.":[34],"As":[35],"a":[36,102,106,169,185,215],"result,":[37],"struggle":[39],"address":[41,89,128],"evolving":[43],"threat":[44,76],"landscape":[45],"due":[46],"reliance":[49],"isolation":[51],"technologies":[52,120,209],"reactive":[54],"strategies.":[55],"However,":[56],"advanced":[57],"technologies,":[58],"such":[59],"as":[60,81,83],"artificial":[61],"intelligence":[62],"(AI)":[63],"machine":[65],"learning":[66],"(ML),":[67],"potential":[70,96],"revolutionize":[72],"by":[74,237],"enhancing":[75,211],"identification":[77],"response":[79,145],"capabilities,":[80],"well":[82],"predicting":[84],"preempting":[86],"risks.":[87],"To":[88],"these":[90,208],"challenges":[91,133,240],"highlight":[93],"full":[95],"SOC,":[98],"this":[99,201],"study":[100,217],"provides":[101,184],"detailed":[103],"overview":[104],"through":[105],"comprehensive":[107],"literature":[108],"review":[109,203],"that":[110,245],"identifies":[111],"gaps":[112],"in":[113,122],"existing":[114],"research":[115,243],"examines":[117],"latest":[119],"used":[121],"SOC":[124,172,195,228],"environment":[125],"help":[127,247],"different":[129,194],"operational":[130],"technical":[132],"bring":[135],"out":[136],"capabilities.":[138],"Various":[139],"methods,":[140],"ranging":[141],"automated":[143],"incident":[144],"behavioral":[147],"analytics":[148],"neural":[150],"networks":[151],"deep":[153],"learning,":[154],"been":[156],"classified":[157],"compared.":[159],"addition,":[161],"an":[162],"in-depth":[163],"reference":[164],"architectural":[165],"model,":[166],"which":[167],"is":[168,179,218],"blueprint":[170],"for":[171,188,210],"integrating":[173],"AI":[174],"ML":[176],"into":[177,193,255],"SOCs,":[178],"introduced.":[180],"The":[181],"proposed":[182],"model":[183],"structured":[186],"framework":[187],"implementation":[189],"offers":[191],"insights":[192,254],"components":[196,229],"interactions.":[199],"Moreover,":[200],"systematic":[202],"emphasizes":[204],"benefits":[206],"operations.":[213],"Finally,":[214],"case":[216],"presented":[219],"describe":[221],"function":[223],"ML-":[225],"AI-powered":[227],"achieve":[231],"optimum":[232],"security.":[233],"This":[234],"paper":[235],"concludes":[236],"discussing":[238],"additional":[239],"future":[242],"directions":[244],"may":[246],"advance":[248],"sector":[251],"provide":[253],"improving":[256],"SOCs.":[257]},"counts_by_year":[{"year":2026,"cited_by_count":25},{"year":2025,"cited_by_count":21}],"updated_date":"2026-05-30T09:04:40.226872","created_date":"2025-01-24T00:00:00"}