A security operations center (SOC) is dedicated monitoring, assessment, and defense facility that responds to real-time information security anomalies and events. You are a new security manager at the New York Stock Exchange in New York.
What positions would you staff in a SOC?
What tools would you deploy in the SOC and why?
What incident response plan (IRP) would you implement for when a breach occurs?
Sample Solution