微软的SOC设计

在2008年1月， 有篇文章提及了微软对SOC的设计的思路：Johnny Walker, senior program manager for Microsoft Global security, explains that the role of the technology design and concept of operations for a SOC is to provide situation awareness that enables precision response and supports forensics investigations.SOC的目标就是为使用者提供全局的态势感知，使得使用者能够进行精确响应并支持其进行历史的调查取证分析。
他还说到了SOC设计的4个层次，技术、监测、沟通和管理。
"We kind of bucket it in four zones: technology, monitoring, communication and administration. First is the technology investment that is really built on your risk drivers. Next, you have to have an effective, sustainable and predictable monitoring model that goes on the total cost of ownership."Once you have heard an alarm and you understand the alarm, you have to be able to communicate it quickly to a response mechanism - whether that's your proprietary forces or a public safety response mechanism - it still has to work," Walker continued. "So you have to invest in that third tier (communications). And then finally you have to have this administrative module that says, 'Do I have the right design, is it working?' So you have this process improvement piece going on so you can evolve the lifecycle of the system and know its readiness."