The Security Operations Centre (SOC) is the control centre where all information about activities and events in the IT infrastructure and the corporate network of a company converge. These events are investigated for anomalies, for hints on security incidents or data leakage.

An anomaly could, for example, consist in that fact that a surveillance camera (CCTV), which is integrated into the IP-based corporate network, suddenly requests large amounts of data from a server. Do you remember: some time ago, the media also reported a successful hacker attack, that used an aquarium a gateway that was integrated into the company network (security consultants are still puzzling over this today).


The author is a manager in the software industry with international expertise: Authorized officer at one of the large consulting firms - Responsible for setting up an IT development center at the Bangalore offshore location - Director M&A at a software company in Berlin.