From my Gartner Blog - Arriving at a Modern SOC Model
blog.securitybalance.com
While writing our new (and exciting) research on “how to build a SOC”, we came into a conclusion that a modern SOC has some interesting differences from the old vanilla SOC that most organizations have in place. In essence, the difference is related to the inclusion of Threat Intelligence and Hunting/Continuous IR activities. The way that a traditional SOC operates is more or less like this:
From my Gartner Blog - Arriving at a Modern SOC Model
From my Gartner Blog - Arriving at a Modern…
From my Gartner Blog - Arriving at a Modern SOC Model
While writing our new (and exciting) research on “how to build a SOC”, we came into a conclusion that a modern SOC has some interesting differences from the old vanilla SOC that most organizations have in place. In essence, the difference is related to the inclusion of Threat Intelligence and Hunting/Continuous IR activities. The way that a traditional SOC operates is more or less like this: