BOOK A MEETING

The Glossary of a Cyber Security Operations Centre.

In the world of cyber security there are many acronyms for reasons such as efficiency, clarity and standardisation but they can get a little confusing. Here is a quick guide to some of the widely used cyber security acronyms used for security operation centres.

Read the explainers of each term underneath.

CSOCCyber Security Operations Centre

  • A CSOC, or Cyber Security Operations Center, is a centralised hub responsible for monitoring, detecting, and responding to security threats and incidents within an organisation’s environment. The goal of a CSOC is to protect an organisation’s digital assets, including data, networks, systems, and applications, from various types of cyberattacks and security breaches.

MDRManaged Detection and Response

  • MDR detects and remediates cyberthreats in an organisation’s environment (usually a single aspect such as company devices) and can be provided as a managed service by a third-party partner.

XDRExtended Detection and Response

  • XDR technologies proactively detect and react to threats extending across multiple areas in an IT environment including devices, identities, data, email, networks, and infrastructure.

MXDRManaged Extended Detection and Response

  • MXDR is the above delivered as a managed service by an expert partner.

ITSMIT Service Management

  • IT service management, referred to as ITSM, is how IT teams manage the end-to-end delivery of IT services to their customers. 

SIEMSecurity Information Event Management

  • Security information and event management (SIEM), is a solution that helps organisations recognise, analyse, and respond to security threats before they cause harm to business operations.

SOARSecurity Orchestration, Automation and Response

  • Security orchestration, automation, and response (SOAR) refers to a solution that enables IT teams to utilise and integrate a range of tools that streamline the threat defence workflow, with automated detection and response. 

Are you interested in learning more about a CSOC?

Download the Guide to a Cyber Security Operations Centre

Discover the key elements and benefits of a Security Operations Centre.

Read Now

About CWSI Group

Founded in 2010, the CWSI Group, incorporating BLAUD and mobco, is a leading provider of IT security, compliance and enterprise mobility solutions that support hybrid and remote working. Our mission is to enable the world to work securely from anywhere. We have helped thousands of organisations and hundreds of thousands of employees to work productively and securely from anywhere, on any network and on any device, without compromise.

From offices in Ireland, the United Kingdom, Netherlands, Belgium and Luxembourg, we provide consulting, professional services, and managed services to many of Europe’s most respected organisations across a wide range of sectors, both directly and through our relationships with leading telecoms providers. CWSI has deep technical expertise in the design, deployment, integration, and management of industry-leading software solutions, with the highest level of accreditation from technology partners including Microsoft, Samsung, Google Android, Ivanti and SentinelOne.

Back to Resources Next Resource

Relevant Resources

Our Voice

What is Data Classification?

Discover the fundamentals of data classification, why it’s essential for secure information management, and how to implement it effectively in your organisation.

Learn More

Technology Talks

Achieving NIS2 Compliance

Tune into CWSI's Client Solutions Director, Paul Conaty, as he addresses key questions about the new NIS2 directive and its impact on organisations.