Security and risk management leaders often struggle to maintain effective security operations centers without defined operating models. SRM leaders who need to protect an organization according to the internal/external threat landscape should build and run an SOC using an SOC target operating model.
- Define the SOC’s Current State, Future State and Roadmap, and Establish Internal and External Alignment With the SOCTOM Framework
- Engage With Leaders Enterprisewide to Understand Their Requirements and the Needs of the SOC
- Translate Security Metrics Into Business-Enabling Terms to Improve Communication With Nonsecurity Leaders
- Develop a Formal Threat-Modeling Program to Assess Threats and Risks to the Business
Gartner Recommended Reading