SOC

A Security Operations Center is a centralized unit responsible for continuously detecting, analyzing, and responding to an organization's security incidents.

SOC stands for Security Operations Center. It is a centralized unit in an organization responsible for managing security on an ongoing basis. The primary purpose of a SOC is to detect, analyze, and respond to security incidents using a combination of technology solutions and a strong set of processes.

A SOC team consists of security analysts and engineers who monitor the organization's IT infrastructure to detect and respond to any abnormalities or threats. They use a variety of tools, such as SIEM systems, to collect and analyze data from across the IT infrastructure in real-time.

SOC teams may also be responsible for improving and maintaining security infrastructure and staying up-to-date with the latest threats and vulnerabilities. The ultimate goal of a SOC is to detect security incidents quickly, contain them, and minimize their impact on the organization's operations.

Read our latest blog articles

Product News

June 23, 2026

Sekoia’s new identity: Designed for clarity

Sekoia has partnered with branding agency Bruno to develop a new brand identity and digital experience that reflects who we really are.

Sekoia Team

Threat Research & Intelligence

TDR

June 11, 2026

APT28, an evolution of tradecraft

Sekoia TDR looks back at how APT28's arsenal has evolved over two decades, from its signature X-Agent implants to disposable modules, edge-device infrastructure and the first LLM-driven malware.

Amaury-Jacques GARCON

Threat Detection & Research Team

Threat Research & Intelligence

TDR

June 16, 2026

Unveiling ErrTraffic: inside a growing ClickFix malware distribution framework

This report details the ErrTraffic threat and its associated ecosystem, highlighting three specific campaigns and their operators' arsenal.

Jérémy SCION

Quentin BOURGUE

Threat Detection & Research Team