5. SOC deployment, key questions to ask yourself
This section details the criteria to be taken into account in order to successfully deploy the SOC approach within the organization.
5.1 Organizational, budgetary and company maturity criteria
A number of criteria need to be taken into account when deciding whether to deploy a SOC-type activity. In general terms, we can state that, although the system can potentially concern all companies and all sectors, the appropriateness of such a service is based on a criterion of proportionality to the company's risks, according to approaches designed to take into account the nature of the risks, their scale and the complexity of the organization. It is important to consider whether the company could make attackers think it would be an attractive target:
- ...
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
SOC deployment, key questions to ask yourself
Putting SOC actions into practice
Bibliography
Bibliography
Standards
- Information security management systems – Requirements - ISO/IEC 27001 - 2022
- Information security, cybersecurity and privacy protection — Information security measures. - ISO/IEC 27002 - 2022
Regulations
Decree no. 2015-350 of March 27, 2015 on the qualification of security products and trust service providers for information system security purposes.
Decree no. 2015-351 of March 27, 2015 relating to the security of information systems of operators of vital importance and taken for the application of section 2 of chapter II of title III of book III of the first part of the legislative part of the Defense...
The Ultimate Scientific and Technical Reference
