If you are a security expert. You must have heard about Security operation center, the part of IT security group which gives 24*7 support against all kinds of threats. Whether it a simple DOS attack or more sophisticated ransomeware attack, SOC is one stop solution against all. It respond to cybersecurity incidents by using a combination of technology solutions and a strong set of processes. SOC team continuously monitors and analysis incoming and outgoing traffic from an organization and takes appropriate action if needed.
What does SOC comprises of exactly?
- Security Incident and Event management(SIEM)
- Intrusion detection/prevention system
- Antivirus team
- Incident management team