Reports/Papers to show SOC Maturity reduces over all security incidents

[sashank]

Does anyone know of any research that attempts to answer questions like these: In general, do organizations with mature SOC Practices have better security? and experience lesser incidents ? 

[robvanos]

Hi!

I'm not familiar with any such concrete reports. More mature and capable SOC teams will be able to detect events earlier and respond better. Thus limiting or negating impact of security incidents. A security operations center's detection capabilities and prevention capabilities (vulnerability scanning) will help to identify weaknesses in the infrastructure. Thus, logic tells us that more mature and capable security operations will increase resilience to cyber attacks. Quantifying this may prove to be more difficult. You would need a 'before' and 'after' snapshot of the situation. And note that before you had a SOC, you probably had incidents you did not even know of.