Plugin Security Operations Centre

Connect a SecOps Team to your cloud environment, providing comprehensive data streams for security analysis and incident management.

Definition

The Plugin SOC (Security Operations Centre) component of Cloudmarque is concerned with providing robust and comprehensive event streams of cloud activity for consumption by SecOps teams, typically via additional SIEM tooling which may be deployed inside or outside of a cloud environment.

The role of the Plugin SOC architecture component is to deliver:

  • Event data sources which can be consumed by SecOps security tools
  • Comprehensive activity and event data from cloud resources to relevant data sources
  • “Timely data” which is not too late to act upon (likely a contextual measure, based on the service level objectives of your SOC team)
Edit this page on GitHub

The content on this page is published under Open Source licenses via GitHub. To submit issues or provide feedback please visit the repository.

Visit