Five Questions to Ask Your SOC Provider

Five Questions to Ask Your SOC Provider

This is a guest post with input provided by Chad Spears, Director of NSOC Operations at InfusionPoints.

A Security Operations Center (SOC) is a facility that is home to a team of certified security experts who are responsible for preventing, monitoring, detecting, investigating, and responding to all cyber threats.

When selecting a SOC solution for your business, it’s important to choose a partner who is qualified to support the needs of your organization. Here are five questions to ask when evaluating a potential SOC solution.

  1. Is this a cost-effective solution for my business? Most organizations allow for 3 full-time employees dedicated to security. Keep in mind, this doesn’t always cover after hours and holidays, which is when most cyber incidents are likely to occur. It usually takes six to seven full-time employees to effectively manage your security operations 24/7/365 with tools, hardware, software, and continued training. The high cost to maintain that staff is more than double the cost of what most organizations permit for security staffing. A SOC solution as a service provides the most value for your organization because it comes with the expert team, tools, and continuous coverage at a fraction of the cost of employing your own.
  2. What should I expect from this service? A SOC provider should be an extension of your team. Once you onboard your SOC solution, little effort is needed from you. They should not just respond to active threats; they should be proactive in their approach to minimizing threats. Your SOC should be utilizing endpoint detection and response (EDR), extended detection and response (XDR), and other proactive tools. They should be up-to-date on the latest threat intel as well. Security Information Event Monitoring (SIEM) should be included with the SOC service and be leveraged with their tooling.
  3. How does a SOC price their service? There are typical ways to price out a SOC. Most SOC pricing is based on nodes. A node is anything that sends a log to the system such as a firewall, server, or PC. The more nodes you have, the larger the price. Ingest pricing monitors the SIEM and you’re charged per the amount of data you send into the SIEM. You can be charged more depending on how much data you send vs. using the node-based pricing.
  4. Where is the SOC located? Your SOC should be US-based. More attacks come from foreign nation states and you don’t want to leverage something outside the US due to the escalation of supply chain attacks we’re seeing. Additionally, if you are a federal contractor, your SOC has to be located on US soil and operated by US citizens.
  5. What types of tools does a SOC use? The SOC should be well versed in tools such as a Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR) Threat Management, Detection & Incident Response (MDR), Vulnerability Management and Patch Management and Penetration Testing. All of these tools and services are a success factor of a fully functioning SOC.

Tego works with InfusionPoints to deliver 24x7x365 SIEM SOC solutions from their North Carolina location. For information on SIEM SOC solutions or to schedule a demo, contact us today.

Security
About the author
Jennifer Vosburgh
Jennifer Vosburgh is a seasoned Marketing and Communications professional. With over 15 years of experience, she has a strong background in Marketing, Communications, and Event Management. As Vice President of Tego Data Systems in Raleigh, NC, Jennifer is responsible for delivering full-scale Marketing Campaigns across all platforms including website, email, social media, events, and more.

Testimonials

  • Working with Tego has been great. They helped us deploy our new SAN at a critical time so that we were be able to help one of our biggest customers with some performance testing. Their knowledge and attention to detail was critical. It has been a pleasure working with them. — Paul Silveira Sensus Utility

  • We have worked with the folks at Tego even before they were Tego Data. In our business there is no room for downtime and over the years the folks at Tego have helped us design, implement and subsequently upgrade our storage infrastructure several times, under very stringent high availability requirements, without issue. — Ted Boggs Duke University

  • Due to an aging infrastructure we were running into a lot of problems backing up our data out of state. The Tego Data team came in and helped us upgrade our environment and set up replication to Austin TX. They have a very knowledgeable and attentive team and we are happy to be working with them! — Gary Tummond Clerk of Court, Indian River County

  • When we had a major production issue, one even the equipment vendor couldn’t resolve in a timely manner, the Tego team was able to respond quickly, help us fix the problem and get us back up and running. Nolan (Tego Engineer) really saved my bacon. — Scott McMullan Symphony Health Software

  • Tego always provides me excellent sales and support services and has done so for as long as I have been doing business with them, about six years. — David C. Channell Liggett Group LLC Manufacturing

  • Having Tego involved and using cloud services gives us peace of mind. We don’t have to pause day-to-day project management to make software updates, which gives us extra time we didn’t have before to work on other strategic issues critical to the business. — Mathew Price Stewart Engineering

  • We have been working with the team at Tego Systems for 6 years now. They have helped us design and implement our NetApp infrastructure which has worked flawlessly to keep our data protected and available. — Michael N. Lee Putnam Valley Central Schools Education

  • The Tego Team has been a great partner to work with over the last several years. Together we developed a disaster recovery solution which fit our needs and budget. We look forward to continuing our relationship with Tego Data in the years to come. — Paul Murray Thomas H Lee Capital LLC Private Equity

  • We recently upgraded our NetApp environment and moved to cluster mode. Tego helped us design the solution and their engineering staff provided superb support and mentoring during implementation. This was our fourth successful NetApp implementation with the Tego Team. — Robert Troxel Maiden Global Servicing Company Insurance

  • We have been working with the team at Tego for 6 years. They have helped us architect our NetApp storage infrastructure and disaster recovery strategy. When we had a water main break in our data center last year we realized very quickly just how critical good technology and an experienced, responsive partner can be. — Don Shiffett Ober Kaler Law

  • Tego is a world-class IT solutions provider. Their engineers and consultants are senior experts only interested in ensuring their partner institutions get the solutions they need to build an infrastructure today’s students expect from a college or university including post-traditional adult students. From managed services to digital transformation to cloud services and data security, Tego Data has the solutions and services colleges and universities can trust to improve enrollment and student digital experiences. — Dr. Karen Srba former VP of Academic & Instructional Technology American Public University System

Accept

By using this website you agree to our updated Conditions of Use and consent to the collection and use of your personal information as described in our updated Privacy Notice, which includes the categories of data we collect and information about your preferences and rights.