Statements (62)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:organization
|
| gptkbp:alsoKnownAs |
SOC
|
| gptkbp:component |
gptkb:risk_management_framework
gptkb:cybersecurity_program IT operations business continuity planning |
| gptkbp:goal |
improve security posture
maintain business continuity minimize impact of cyber attacks reduce response time |
| gptkbp:industry |
gptkb:energy
gptkb:government gptkb:technology financial services healthcare retail |
| gptkbp:location |
gptkb:hybrid
on-premises virtual outsourced |
| gptkbp:monitors |
networks
applications cloud environments user activity endpoints |
| gptkbp:operates |
24/7
|
| gptkbp:performs |
reporting
compliance monitoring forensic analysis security automation vulnerability management collaboration with law enforcement alert escalation collaboration with IT teams incident triage threat intelligence analysis |
| gptkbp:purpose |
ensure regulatory compliance
coordinate incident response analyze security threats detect security incidents manage security alerts monitor security events respond to security incidents |
| gptkbp:relatedStandard |
gptkb:MITRE_ATT&CK
gptkb:ISO/IEC_27001 gptkb:CIS_Controls gptkb:NIST_SP_800-61 |
| gptkbp:staffedBy |
incident responders
security analysts threat hunters SOC managers forensic investigators |
| gptkbp:uses |
gptkb:IDS
gptkb:SOAR gptkb:log_management_systems firewalls endpoint detection and response SIEM threat intelligence platforms |
| gptkbp:bfsParent |
gptkb:Cortex_XSOAR
|
| gptkbp:bfsLayer |
6
|
| https://www.w3.org/2000/01/rdf-schema#label |
Security Operations Centers
|