In phase B, we continue to see the interaction between the SOC and IT operations. They have to determine with the other business owners what is considered medium impact applications and systems. This allows the scanning function to expand what their scope is so that the information they provide to the reporting function of VM provides value on the identified items: