Introduction to Security Operation Center
What is SOC / CSOC? S ome companies called it CSOC but most people have known it as SOC. This SOC word abbreviates as Security Operation Center or when about CSOC it abbreviates as Cyber Security Operation Center. Figure 1 - Security operation Center Why is SOC / CSOC? E verybody has a question why this type of center is maintained by the companies. The answer is to monitor all the incoming and outgoing data traffics, employees' activities, the behavior of the information systems and network to see whether are there any kind of vulnerabilities or suspicious activities are there. If there is something fishy, cyber security analysts need to report them to the liable authorities. To find these vulnerabilities and other kinds of things employees of the security operation center need to follow different types of techniques, tools, and procedures. Among the techniques, some of them are threat hunting, penetration testing,