Security Operations Center – SOC Elements
SOC (Security Operations Center) help organizations to protect them from known, unknown threats and to improve organization Security Posture. SOC Unit consists of 3 key elements: People, Process & Technology
1) People: Various roles need to be defined to function SOC effectively and to make sure to protect an organization at all layers. It is essential to maintain & Upgrade resources technical skillset, to let them undergo regular pieces of training & Certification programs.
2) Process: SOC Processes enable resources to act in case of an incident, alert and guide them on how to deal with it. SOC unit makes sure that processes are well defined and well followed by the resources.
3) Technology: SIEM (Security Information and Event Management) is a key component under SOC umbrella which works in conjunction with other technical components like SOAR, UBA, VA, PT, forensic etc.