SOC teams are responsible for monitoring detecting,
containing and remediating IT threats across applications,
devices, systems, networks, and locations.
Using a variety of technologies and processes, SOC teams rely on the latest threat intelligence (e.g, indicators, artifacts, and other evidence) to determine whether an active threats is occurring,
the scope of the impact, as well as the appropriate remediation.
Security operations center roles & responsibilities have continued to
evolve as the frequecy and seventy of incidents continue to increase.