What is a SOC

The security operations center is the heart of security. It is where you have your analysts and that information is passed to threat intelligence, incident response and your other security support teams. 

This is impacted by what your company delivers to your customer or company. Some security companies don’t offer incident response or other services. They do rely on the information from the soc. 

The basic job of a SOC is to analyse the data given to them by the company. This will include event logs and system logs. This data is everything that occurs on the host be it a server or a computer. From internet browser history to computer games being accessed on the host. The company does decide what data the SOC will analyse and how many hosts your employer is installed on.