Focus and Features

A well functioned Security Operations Centre (SOC) assists companies in identifying, managing and remediating security attacks. The SOC is responsible for the management of technical and functional controls. The end-goal of a SOC is to improve the security posture of an organization by detecting and responding to threats and attacks before they have an impact on the business.


The primary functions of the SOC are to monitor security events from the implemented IT Security controls as well as other critical assets, and respond to events. This allows various stakeholders to have situational awareness, reduces risk and downtime, and assist with threat control prevention.



Moreover, a SOC can aid in achieving compliance to regulatory requirements through the monitoring of events against specified compliance objectives, such as providing audit log retention requirements and monitoring the effectiveness of implemented technical controls.



Objectives

  • Provide an overview of Security Operations Center – objectives, components
  • Understanding the ecosystem of the Security Operations Center – people, process, technology, environment, regulations and standards
  • Implementing the SOC Framework and IT Security Incident Management - Monitoring, Detection and Response
  • Controls needed to operate SOC
  • Sample Case Study


What You Will Learn

Overview of the Security Operations Center

  • What is a Security Operations Center (SOC)
  • What are the components of the SOC
  • What is the difference between the Network Operations Center and the SOC
  • What are the related regulatory requirements in implementing the SOC?
  • Understanding the architecture of the SOC

Understanding the SOC Blueprint and Processes in Building the SOC

  • What is a Blueprint? Why is it helpful
  • What are the processes needed to operationalize SOC


IT Security Incident Management and Response

  • What is an IT Security Incident
  • Framework to manage IT Security Incident and Response


Reviewing the SOC

  • Reviewing the controls needed to operationalize the SOC
  • Reviewing IT Security Incident Management
  • Reviewing people competency and skills


Who Should Attend

The intent of this course is to enable Auditors and Audit Managers to understand how the SOC works, its processes, how to is used to defend the organization's core business and identify areas for efficiency, information protection and capability building. This is practical approach that will teach various assurance functions to review the implementation of SOC against best practices.


Speakers

Maria Carmela Migriño

Vice President at Globe Fintech Innovations

More about our speakers

Location

Institute of Internal Auditors Philippines, Inc.
139 Corporate Center, Valero Street,
Makati City, Philippines

See route

Contact us

For additional event or venue information, please email training@iia-p.orgYou can also reach us at +63 9409551

Sponsors and Partners