Discover the definition of the term Soc presented by Les Assises de la Cybersécurité.

SOC

The Security Operations Center is the “control tower” of the company’s cybersecurity! It is a team responsible for supervising the various equipment of the information system and processing the alerts that they emit during their daily operation (it does not matter whether the alerts come from the antivirus, a server or network routing equipment… as long as they can be traced back to the SOC!). Once the alerts are received, the SOC team of experts must then verify them, qualify the potential threat and raise the alarm. The main tool of SOC analysts is the SIEM, which collects and centralizes the thousands of events generated by the information system.

No, the main tool of the SOC is not the plow…