What is a SOC?

A SOC is a Security Operations Center, which is usually manned 24/7 by a team who will alert the appropriate person when an attack has been discovered on a system. They are the eyes and ears of Security Analytics systems which help (usually overloaded) IT Teams by monitoring the systems and performing further drilldowns of information for the IT team for actioning when an attack is detected. This is done by following well-defined procedures for detecting and responding to attacks which get flagged to the SOC by a Security Analytics system.

One of the issues with a SOC is the cost. It is sometimes difficult to get a cost-effective SOC in your preferred geography, or in multiple geographies if you want redundancy. The biggest problem is about where your data is processed. Do you want your data to be transferred to a foreign country? Do the relevant laws even allow that? If not, are you prepared to have two separate SOCs in your country to ensure redundancy?

A SOC can cost upward of $2M per year to run, if you want redundancy, that’s at least $4M per year not counting travel and other expenses. Is a SOC going to give you $2-$4M worth of value every year?

When a procedure is well-defined it can also be automated. That’s why at knogin we believe in Artificial Intelligence. No human can beat AI on pattern recognition or speed. Every second counts when an attack is detected, that’s why our AI-Powered SOC responds immediately and calls you when an attack is detected.

The best part is that because our SOC is powered by AI, no one outside of your company needs to analyse the data and it can be established in one or several geographical locations of your choosing at very little cost. That’s why we can offer you a much more secure service at lower cost in the exact location that you need it to be.