Published : 20/05/2026
Customer Success Stories
AST strengthens Cybersecurity with a 24/7 Security Operations Center (SOC)
AST (Aragonesa de Servicios Telemáticos) has strengthened its cybersecurity model with the support of Inetum, improving the protection of its digital infrastructure and ensuring the continuity of key services within the public administration.
The increasing complexity of the Government of Aragon’s technology environment, coupled with the initial lack of a centralized cybersecurity service, made effective risk management difficult. Security tools had been gradually incorporated, but without a fully integrated model, which limited the ability to detect and respond to incidents. This situation directly affected critical areas such as healthcare, justice, and education, where system security and availability are essential.
A Centralized Model for Security Management
To address these challenges, Aragonesa de Servicios Telemáticos implemented a comprehensive cybersecurity model based on the centralization of capabilities, continuous monitoring, and the definition of structured incident response processes.
This approach enabled a shift from fragmented management to a more coordinated model, providing greater visibility into systems and the ability to respond more quickly and effectively. The creation of a dedicated, highly specialized team with low staff turnover has been instrumental in ensuring service stability and operational quality.
“Having defined processes and a specialized team,” explains Óscar Torrero, director of the Aragón Cybersecurity Center, “has allowed us to improve our response capabilities and ensure the service levels required in critical environments.”
Technology and operations for an effective response
The launch of a Security Operations Center (SOC) alongside an incident response team (CSIRT) has been fundamental to consolidating this operational model.
Inetum has provided a comprehensive service ranging from continuous monitoring of security tools to incident management, forensic analysis, and 24/7 operational support. This approach has ensured constant monitoring of the technological environment and a structured response to any threat.
In addition, work has been done to consolidate and integrate various security solutions, improving overall visibility and facilitating centralized management. The definition of procedures, playbooks, and simulation exercises has allowed for the validation of processes and ensured their effectiveness in real-world scenarios.
With Inetum’s support, a collaboration model has also been developed that integrates local teams, SOC capabilities, and consulting services, ensuring effective coordination among all involved areas.
Impact on Security and Operational Efficiency
The results of this initiative have led to a tangible improvement in the organization’s cybersecurity maturity and operational capacity.
The service covers more than 30,000 devices and 50,000 users, ensuring incident management in accordance with established quality standards. The definition and validation of processes have improved the speed and accuracy of responses, reducing risks and ensuring the continuity of public services.
“Validated processes and coordination between teams have been key to strengthening the quality of incident response and improving the overall protection of the environment,” says Óscar Torrero, director of the Aragón Cybersecurity Center.
A foundation for the continuous evolution of cybersecurity
The implementation of this model has laid the groundwork for the continuous evolution of cybersecurity within the Government of Aragon.
Factors such as coordination among teams, ongoing process validation, and the integration of capabilities have been key to the project’s success. This foundation allows us to continue moving toward a more scalable model that is better suited to new needs.
Related success stories
- Title
- Description
- Date
- 1
- 2
- 3
- 4
- 5