security operations center (SOC)
GPTKB entity
Statements (48)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:organization
security facility |
| gptkbp:canBe |
gptkb:virtual_SOC
external internal managed SOC |
| gptkbp:focusesOn |
forensics
compliance monitoring incident response threat detection log management vulnerability management cybersecurity monitoring security event analysis |
| gptkbp:goal |
ensure regulatory compliance
minimize security risks protect organizational assets |
| https://www.w3.org/2000/01/rdf-schema#label |
security operations center (SOC)
|
| gptkbp:location |
hybrid
remote onsite |
| gptkbp:monitors |
networks
applications cloud environments endpoints |
| gptkbp:operates |
24/7
|
| gptkbp:provides |
reporting
real-time monitoring threat hunting incident escalation alert triage |
| gptkbp:relatedStandard |
gptkb:MITRE_ATT&CK
gptkb:ISO/IEC_27001 gptkb:NIST_SP_800-61 |
| gptkbp:relatedTo |
gptkb:computer_security_incident_response_team_(CSIRT)
gptkb:network_operations_center_(NOC) gptkb:security_information_and_event_management_(SIEM) threat intelligence incident response plan |
| gptkbp:staffedBy |
incident responders
security analysts SOC managers |
| gptkbp:uses |
gptkb:IDS
firewalls SIEM threat intelligence platforms |
| gptkbp:bfsParent |
gptkb:network_operations_center_(NOC)
|
| gptkbp:bfsLayer |
6
|