Our Security Operations Center (SOC) Assessment evaluates SOC processes, technology and controls to identify areas for improvement.
Areas of focus within this assessment include:
Deliverables include an assessment report and a slide deck presented to executive leadership.
The SOC is a critical component within your cybersecurity program. Service providers that provide a 'SOC2 Type II report' may still have significant control deficiencies. This is due to Type II being based on five “trust service principles” (a bit high-level). Type II is not specific to Security Operations Centers. If the Assessor does not have SOC specific work papers or better yet, years of experience within SOCs, they will fail to identify significant findings.
Fees and Payment
The assessment is billed at a flat rate. The engagement begins once the Statement of Work and Contract are signed and upon receipt of the first of three equal payments.
SOW and Contract Execution
First Assessment Interview
Delivery of Draft Report
Custom assessments may be conducted based on the needs of the client. Here are examples:
Business Process Risk
Line of Business Risk
FMEA Process Risk
Security Awareness Program
Mergers & Acquisitions
Zero Trust Security Model
Threat Landscape and Controls
This service offering description provides an overview for informational purposes only. The Statement of Work and the Master Services Agreement are the official documents for each assessment engagement.