8.2 SOC Assessment

Printer Friendly Page

8.2 SOC Assessment


This vendor-agnostic activity results in better visibility into people, process, and technology as it pertains to your SOC. This activity provides the next steps to enhance SOC capabilities. 


Tasks include: 

  • Assess the SOC through in person interviews with the entire security organization 
  • Check and validate the customers processes for incident detection, response, and hunting 
  • Review the interface agreements with surrounding teams 
  • Validate the SOC is using capabilities available to them 
  • Propose meaningful metrics and KPIs
  • Benchmark and provide recommendations for further improvement



  • SOC Assessment Report


Consultant Collateral: 

  • SOC Assessment workflow with checklist
Ask Questions Get Answers Join the Live Community
Version history
Revision #:
2 of 2
Last update:
‎07-02-2020 11:13 AM
Updated by: