Bob Young on Nostr: Does your company have a Security Operations Center (SOC), or are you considering ...
Does your company have a Security Operations Center (SOC), or are you considering one? Then pay attention, because you need to hear this. The choice between In-house SOC and Managed SOC doesn’t start with cost. You start with an analysis of EFFECTIVENESS and SUITABILITY for your organization’s security needs. IF and ONLY IF both options are effective and suitable for your organization, THEN you can compare cost.
Usually – and I mean 99 times out of 100 – only one option is both effective and suitable for your organization.
Example 1: A small company doesn’t have enough security incidents to maintain a full-time in-house staff. An in-house SOC isn’t suitable. In this situation, if any SOC at all is suitable, you’re comparing prices of competing managed SOCs, you’re not comparing in-house versus managed SOCs.
Example 2: A large company has enough incidents to maintain a full-time in-house SOC. The in-house SOC will provide better response times, more control, greater knowledge of the network and users, better communication with the IT staff, better communication with the CISO, better project coordination, and – I promise – better security, because of all of the things I just mentioned.
The managed SOC has to pay their people, pay for their infrastructure, AND make a profit. There is no way the managed SOC can provide the same level of service without charging you more than it would cost you to do it yourself.
Their infrastructure is only fractionally concerned with your network.
Their SOC analysts are only fractionally concerned with your network.
#CallMeIfYouNeedMe #FIFONetworks
#cybersecurity #SOC
Published at
2025-03-19 18:45:09Event JSON
{
"id": "b768e1570f55f9741d5cb393b132d7a932b927b34c1a6ff1c6235c7350c8cc88",
"pubkey": "6d3781dc5e61c9673b1587daf950cd9d40770dab2d722cb87b1865bc2cc8135d",
"created_at": 1742409909,
"kind": 1,
"tags": [
[
"t",
"callmeifyouneedme"
],
[
"t",
"fifonetworks"
],
[
"t",
"cybersecurity"
],
[
"t",
"soc"
],
[
"imeta",
"url https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/190/567/606/350/751/original/8990fde8a8b17a13.png",
"m image/png",
"dim 762x840",
"blurhash U#NAYbS2x]s.~qWBRjay?bjZWBWX9FkCofj["
],
[
"proxy",
"https://infosec.exchange/users/fifonetworks/statuses/114190575840792866",
"activitypub"
]
],
"content": "Does your company have a Security Operations Center (SOC), or are you considering one? Then pay attention, because you need to hear this. The choice between In-house SOC and Managed SOC doesn’t start with cost. You start with an analysis of EFFECTIVENESS and SUITABILITY for your organization’s security needs. IF and ONLY IF both options are effective and suitable for your organization, THEN you can compare cost.\n\nUsually – and I mean 99 times out of 100 – only one option is both effective and suitable for your organization.\n\nExample 1: A small company doesn’t have enough security incidents to maintain a full-time in-house staff. An in-house SOC isn’t suitable. In this situation, if any SOC at all is suitable, you’re comparing prices of competing managed SOCs, you’re not comparing in-house versus managed SOCs.\n\nExample 2: A large company has enough incidents to maintain a full-time in-house SOC. The in-house SOC will provide better response times, more control, greater knowledge of the network and users, better communication with the IT staff, better communication with the CISO, better project coordination, and – I promise – better security, because of all of the things I just mentioned.\n\nThe managed SOC has to pay their people, pay for their infrastructure, AND make a profit. There is no way the managed SOC can provide the same level of service without charging you more than it would cost you to do it yourself. \n\nTheir infrastructure is only fractionally concerned with your network. \nTheir SOC analysts are only fractionally concerned with your network.\n\n#CallMeIfYouNeedMe #FIFONetworks\n\n#cybersecurity #SOC\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/114/190/567/606/350/751/original/8990fde8a8b17a13.png",
"sig": "1731576a323b96712047ba0326d26f9bba5cec13e8e6a7a46bcc615b963a5727e7ecb2f257fb5c4741b595124e61116c55c4e348dae45a6cc0bee97994f03da3"
}
