security operations center (SOC)
GPTKB entity
Statements (48)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:organization
security facility |
gptkbp:canBe |
gptkb:virtual_SOC
external internal managed SOC |
gptkbp:focusesOn |
forensics
compliance monitoring incident response threat detection log management vulnerability management cybersecurity monitoring security event analysis |
gptkbp:goal |
ensure regulatory compliance
minimize security risks protect organizational assets |
https://www.w3.org/2000/01/rdf-schema#label |
security operations center (SOC)
|
gptkbp:location |
hybrid
remote onsite |
gptkbp:monitors |
networks
applications cloud environments endpoints |
gptkbp:operates |
24/7
|
gptkbp:provides |
reporting
real-time monitoring threat hunting incident escalation alert triage |
gptkbp:relatedStandard |
gptkb:MITRE_ATT&CK
gptkb:ISO/IEC_27001 gptkb:NIST_SP_800-61 |
gptkbp:relatedTo |
gptkb:computer_security_incident_response_team_(CSIRT)
gptkb:network_operations_center_(NOC) gptkb:security_information_and_event_management_(SIEM) threat intelligence incident response plan |
gptkbp:staffedBy |
incident responders
security analysts SOC managers |
gptkbp:uses |
gptkb:IDS
firewalls SIEM threat intelligence platforms |
gptkbp:bfsParent |
gptkb:network_operations_center_(NOC)
|
gptkbp:bfsLayer |
6
|