This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SOC Certification Body
Hi Rob, 
Do you know of any SOC Certification Body?
For example, Head of Cybersecurity wants to prove that its SOC is an advanced SOC with all the top-notch technologies, processes, and people.
Is there any well-known third party that can certify this?

Best regards,
Hi Darren,

I'm not aware of any such certification. There are consulting companies that have proprietary maturity models that they use for assessment. This sort of maturity assessment could be used as 'proof' of an advanced SOC. Of course, the SOC-CMM could be used for the same purpose. Objectivity can be introduced by having the assessment conducted by a third party. In the Netherlands, there is already a company doing SOC-CMM assessments. There may be others that I am not aware of. The advantage of using the 'open' SOC-CMM for assessments is that you can avoid 'vendor lock-in' due to proprietary confidential models.


Forum Jump:

Users browsing this thread: 1 Guest(s)