This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SOC MM
#1
Hi Rob & Community, 


I want to perform a SOC assessment using SOC MM,

Can you provide more details about business drivers, because as i know the SOC is combination of People Process and technology, ?

Thanks

Hemza | SOC Analyst
Reply
#2
Hi Hemza,

The idea behind the SOC-CMM is the differentiation in 5 domains: people, process, technology as the standard 'triad', augmented with business and services. Service is about the services delivered by the SOC. Business is about alignment with the business. Understanding business drivers is an important part. The business drivers dictate why the SOC exists. There must have been some driver or incident that made the board decide to invest in the deployment of a security operations center. For an MSSP, it can also be a business decision or by demand from the MSSP customers.

I hope this helps. If you have any additional questions, please let me know.

Regards,
Rob.
Reply
#3
(01-22-2020, 04:13 PM)Thanks for your replyrobvanos Wrote: Hi Hemza,

The idea behind the SOC-CMM is the differentiation in 5 domains: people, process, technology as the standard 'triad', augmented with business and services. Service is about the services delivered by the SOC. Business is about alignment with the business. Understanding business drivers is an important part. The business drivers dictate why the SOC exists. There must have been some driver or incident that made the board decide to invest in the deployment of a security operations center. For an MSSP, it can also be a business decision or by demand from the MSSP customers.

I hope this helps. If you have any additional questions, please let me know.

Regards,
Rob.
Reply
#4
Hello, Iam working on a set up SOC project. The SOC will be managed by external service provider but I should identify use-case for a Financial institution. I have consulted the Magma Framework. I found that the framwork is concentrates on infrastructure uses-cases. I have already worked as security analyst for some SOC. Have you already worked on use-cases dedicated on finacial institutions? on cloud environments? Thank you for your help and advices
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)