Certified Information Systems Security Professional (CISSP) — Question 236
The Chief Information Security Officer (CISO) of a small organization is making a case for building a security operations center (SOC). While debating between an in-house, fully outsourced, or a hybrid capability, which of the following would be the MAIN consideration, regardless of the model?
Answer options
- A. Headcount and capacity
- B. Scope and service catalog
- C. Skill set and training
- D. Tools and technologies
Correct answer: B
Explanation
The main consideration should be the Scope and service catalog, as it defines what services the SOC will provide, which is crucial for determining the operational requirements. While headcount, skill sets, and tools are important factors, they are secondary to ensuring the SOC's services align with the organization's needs.