SOC: Security Operations Center
A Security Operations Center (SOC) is a centralized unit that deals with security issues on an organizational and technical level. This is the definition of SOC. But wait did you get it? Lets simplify it. You all know what "Hub" is...(You are reading a blog post on InfoSec Hub 🙇 ) A SOC acts like the hub. it continuously monitors organization's security posture while preventing, detecting ,analyzing and responding to cybersecurity incidents. Main Work Done By SOC SOC monitors and analyze activity on networks,servers,endpoints and databases,applications and so on. Establishing SOC The first step in establishing an organization’s SOC is to clearly define a strategy that incorporates business-specific goals from various departments as well as input and support from executives. Plus infrastructure is required to support the strategy which is going to be implemented. Benefits Of SOC Improvement in security incident detecti...