SOC Workflows
Orchestrate triage, investigation, and response
Alert Triage
Prioritize and route
Playbooks
Repeatable steps
Case Management
Evidence and notes
Investigation
Pivot across indicators
Collaboration
Hand-offs and approvals
Response
Contain and remediate