Français
4. Indicators used by the SOC
4.1 Technical indicators
First of all, indicators deemed "technical" can be compiled. These indicators are based on a multi-pronged approach:
-
track a number of feared risks as a security incident tracking service provider (PDIS: prestataire de détection d'incidents de sécurité, certified by ANSSI), including :
risks of virus propagation ;
the risk of a privilege elevation attack, enabling an attacker to remove the security features of an information system (e.g. disabling antivirus software);
data exfiltration scenarios ;
usurpation of a user's professional account;
...
The Ultimate Scientific and Technical Reference
This article is included in
Safety and risk management
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Indicators used by the SOC
SOC deployment, key questions to ask yourself
Bibliography
Bibliography
Standards
- Information security management systems – Requirements - ISO/IEC 27001 - 2022
- Information security, cybersecurity and privacy protection — Information security measures. - ISO/IEC 27002 - 2022
Regulations
Decree no. 2015-350 of March 27, 2015 on the qualification of security products and trust service providers for information system security purposes.
Decree no. 2015-351 of March 27, 2015 relating to the security of information systems of operators of vital importance and taken for the application of section 2 of chapter II of title III of book III of the first part of the legislative part of the Defense...
The Ultimate Scientific and Technical Reference
