Phase C of this Capability Maturity Model is a desired end state where information security teams are fully interacting with each other and providing useful information, up to the SOC and down to their customers.
These are the main highlights from the phase:
- Data overload is minimal or does not exist for the customer as reporting is customized to their needs
- The SOC is able to continuously analyze reports from the services and provides guidance and direction to the teams as PIRs flow down, across, and back up through the communication channels
- The two lanes that are going to and from the customer: from Operational Level to Tactical Level is now a highway
- There is full interaction between information security teams