Whilst some organizations have a 24x7 security operations centre (SOC) with teams of dedicated analysts carefully monitoring for threats around the clock, every day of the year. Unfortunately, most organizations cannot afford a 24x7 SOC. The cost of having well-trained analysts onsite at all times outweighs the benefit.

In this session we outline:
- Various security operations models - from an informal SOC to a 24x7 staffed team
- Common challenges faced by organizations with limited resources, including the dangers of an informal SOC approach
- How to balance the real cost of an informal SOC, against the potential damage caused by a data breach or uncontrolled malware
- Steps to building a SOC with limited resources

свернуть