The Security Operation Centres (SOC) are in charge of continuous real time intrusion detection and handling:

• Performing vulnerability Scanning of customers systems to ensure they have been updated with the latest critical security patches,
• Setting up automated detection systems allowing to timely detect abnormal behaviors in its' customers IT infrastructure,
• 365x7 monitoring of incoming alerts from detection systems, qualifying the alerts with the customer,
• Managing intrusion attempts with the customer to stop them immediately.

Like the CSIRT, the SOC are organized in a network of sub-regional entities, operated by selected private sector partners and tightly supported by the Information Sharing and Analysis Centre (ISAC) and Computer Security Incident Response Teams (CSIRT).

The SOC Team is also developing new Open Source detection systems to enable more Financial Inclusion Institutions to access high end detection services.