The Glossary of a Cyber Security Operations Centre

Oct 5, 2023 | Security

The technology sector has always been awash in acronyms. For reasons such as efficiency, clarity, and standardisation, that’s no different in cybersecurity. To help you navigate the acronyms used for Cyber Security Operation Centres (CSOC), here’s an overview of the most common abbreviations. 


Cyber Security Operations Centre (CSOC)

A CSOC, or Cyber Security Operations Centre, is a centralised hub responsible for monitoring, detecting and responding to cyber threats and incidents. The purpose of a CSOC is to protect an organisation’s digital assets, including corporate data, networks, systems and applications, from cyber attacks and security breaches.


Managed Detection and Response (MDR)

MDR allows you to detect digital attacks and respond in time. Typically, MDR focuses on only one security area, such as corporate devices. MDR is usually delivered as a managed service by a third-party partner.


Extended Detection and Response (XDR)

XDR technologies proactively detect and respond to threats extending across multiple areas in an IT environment including devices, identities, data, email, networks, and infrastructure.


Managed Extended Detection and Response (MXDR)

An MXDR service extends XDR capabilities into a fully managed service, delivered by an expert partner.


IT Service Management (ITSM)

IT service management is how IT teams manage the end-to-end delivery of IT services to their customers.


Security Information Event Management (SIEM)

Security Information and Event Management (SIEM), is a solution that helps organisations recognise, analyse, and respond to security threats before they cause harm to business operations.


Security Orchestration, Automation and Response (SOAR)

Security Orchestration, Automation and Response refers to a set of services and utilities that enables IT teams to utilise and integrate a range of tools that streamline the threat defence workflow, with automated detection and response.