What it is
Help monitor potential threats with an Advanced SOC expertise, intelligence and a tailored managed security service.
Hybrid operating model: Our skilled SOC analysts—which may include onsite resources—work directly with your own security teams.
Customized: Tailored to your needs, our SOC analysts monitor and analyze security events in your environment, alerting you to potential security incidents and helping provide you with information you need to better protect your systems.
24/7 regional Advanced SOC analysts: Eyes-on-glass near real-time security monitoring, detection, threat analysis and escalation as needed.
Tier III analyst: Analyzes, researches and helps resolve complex and escalated alerts and incidents.
SIEM engineer: Focuses on specific tasks like use case customization, refinement, tuning and more.
Follow-the-sun SOC analysts: Providing additional support as needed.
Added resources: You can choose to add more resources to your service as you expand your data collection and logging. Additionally, you can choose to manage your own security information and event management (SIEM) platform or we can manage it for you.
Continuously updated global threat intelligence library: Enhance your view of the overall threat landscape with four different types of cyberthreat intelligence.
Strategic intelligence: Concentrates on the risks and implications associated with threats in the context of your business environment.
Operational intelligence: Provides insights into the capabilities and intentions of potential adversaries.
Tactical intelligence: Supports planning and execution of daily security activities by providing threat indicators to help enable proactive threat hunting.
Technical intelligence: Provides technical indicators of detected attack IPs, malware hashes, phishing domains and other potential threats.
Maximized protection: Our Advanced SOC analysts leverage leading-edge tools in our security technology stack to maximize our ability to help detect potential threats to your business.
SOAR: Security orchestration, automation and response (SOAR)-driven incident handling helps enable faster detection, response and mitigation.
Ticketing system: Assists with incident, change and asset management.
Verizon-managed SIEM: Take advantage of our scalable correlation, log collection, log storage and orchestration capabilities.
Endpoint security: Leverage Verizon-managed endpoint detection and response services
Robust platform: Leverage our array of additional multivendor security tools.
Benefits
Augmented security
Combine your security team with our onsite, designated, skilled and seasoned SOC experts.
Threat visibility
Broaden and deepen your visibility with your data sources and our global threat intelligence, SIEM expertise and extensive technology stack.
Características
SIEM tuning service
We provide upfront implementation and tuning services for your SIEM based on our rule sets that are customized to your environment, as well as continuous tuning.
Integrated operational model
We leverage both your security operations and intelligence capabilities and our security operations and intelligence capabilities.
Designated specialists
Assigned security and engineering resources designated to you throughout the life cycle of the service.
Daily threat intelligence
As we monitor your environment, we alert you to potential threats, including curated daily threat intelligence feeds.
Recursos
Advisory of Active Exploitation of Apache’s Log4j
Learn about this major remote code execution vulnerability, as well as possible mitigation steps and recommendations from our Threat Research Advisory Center.
2024 Data Breach Investigations Report
This year, we analyzed a staggering 30,458 real-world security incidents. Download the DBIR to find out more about the cyber threats your organization might be up against.
Verizon Mobile Security Index 2023
Gain critical insights into the current mobile threat landscape, and tips from security experts on how to help protect your organization.
Preguntas frecuentes
Some of the most common challenges organizations face when trying to run a SOC include:
- The industry’s lack of skilled and seasoned people with the expertise needed to staff a capable SOC team
- Having to deal with too many alerts or too many tools
- The inability to get the full value from their security investments
- Lack of automation, orchestration and playbooks
- Enterprise-wide visibility and context
An effective SOC strategy needs to include:
- An enterprise-grade technology stack that includes SIEM, SOAR, user behavior analytics (UBA) and ticketing solutions
- A complete team of SOC experts, including SOC analysts, threat hunters and engineers
- Best-practice SOC processes for incident response, threat hunting and vulnerability management
- Strong governance structure and program with policy management, stakeholder buy-in and continuous improvement
- Prioritized security data from multiple sources, including syslog, Internet of Things (IoT) devices, vulnerability data, access and identity management data, and more
- Strategic, tactical and operational threat intelligence
An advanced SOC solution should include the following characteristics:
- Customization: An advanced SOC should be tailored in partnership with the customer in relation to their security program maturity journey.
- Global visibility and security intelligence: Verizon is a core internet backbone carrier that researches and stays current on evolving threats as demonstrated with its yearly publication of its well-known and trusted Data Breach Investigations Report, and which offers its Dark Web Hunting Service, along with an array of other powerful security services and solutions.
- Flexibility: To adapt to your unique and evolving needs, an advanced SOC service needs flexibility, which Verizon provides with its integrated security model, SIEM-agnostic services and its XSOAR offering
- Deep expertise: An advanced SOC service should have several years of proven and successful experience operating its own enterprise SOCs on a global scale as well as having regional SOC personnel