SOC Maturity level

Welcome to your SOC Maturity

* Full Name:

Job title

* Email:

Do you use documented workflows?

NO

YES

Do you perform regular teambuilding exercises?

YES - every year

NO

YES - every month

Do you measure employee satisfaction for improving the SOC?

NO

Working on at

YES

Have you identified the SOC customers?

YES but not fully

ON-GOING

YES

NO

Do you have a satisfactory physical SOC location?

YES- but is very small

YES

NO

Do you formally differentiate roles within the SOC?

NO

YES

Do you have a formally described shift turnover procedure?

YES - partly

YES - fully implemented

NO

Is there a governance process in place?

YES

NO

YES-Fully implemented

Yes - not implemented yet

Do you have regular workshops for knowledge development?

NO

YES - 3 times in a year

YES - once in a year

Have you identified the main business drivers?

PARTIAL

YES

NO

FULL

Does the SOC have a formal charter document in place?

NOT Fully

NO

YES

On-Going

Is there a reserved budget for education and training?

NO

YES

Do you have service level agreements with these customers?

YES

On-Going

NO

YES but not published yet

Which of the following roles are present in your SOC?

Security Engineer

Security Specialist

Security Architect

Incident Handler

Threat Analyst

Security Analyst

Team Leader

Penetration Tester

Incident Manager

SOC Manager

Is skill assessment regularly updated with new skills?

Which assessment?

YES

NO

Do you have a training program in place?

NO

YES - for TIER1

YES - for all roles in the SOC

Is the SOC charter document approved by the business / CISO?

NO

On-Going

Other

YES

Do you have a career progression process in place?

NO

YES

Is there a SOC management process in place?

YES - fully implemented

YES - but not fully

NO

Do you use external employees /contractors in your SOC?

Contractors

External employees

Internal full time employees