HOME ABOUT US NEWS TEAM PARTNERING TRAINING EVENTS MEDIA KIT CONTACT
  TEAM ACCESS
     Silver Access
     Gold Access
     Researcher Access
  ASSOCIATIONS 
     Affiliates
     Auditors
     Training Partners
  RESEARCH
     Business Integrity (BIT)
     Home Security (HSM)
     Networking Protocols (OPRP)
     Security Auditing (OSSTMM)
     Security Metrics (ravs)
     Child Security Awareness
     Teen Security Awareness
     Trusted Computing (AVIT)
     Security Models (SOMA)
     Code Analysis (SCARE)
     Security Tools
     Secure Programming
  CERTIFICATION 
     Security Analyst
     Security Expert
     Security Tester
     Wireless Security Expert
     Trust Analyst
     Security Awareness Instructor
     Certified People
     Companies & Products


SOMA - Security Operations Maturity Architecture

SOMA (Security Operations Maturity Architecture) offers a new approach to defining security operations and management processes. Originally designed to fill the need for a simple and widely applicable quality standard for ISM systems, SOMA provides a framework for easily structuring and accurately measuring operational security and management process.

As a maturity model, SOMA provides an architecture model applicable at any security maturity level of any size organization. SOMA can be applied cleanly with high sophistication to assure business objectives are specifically tailored to security design, implementation, operations, management, procurement, and assurance processes.

SOMA is both logical and comprehensive for organizations already using standards such as COBIT, ITIL, CMMI, ISO17799, ISO27001, OCTAVE, and the OSSTMM. It is structured into maturity levels based on operational security metrics so that organizations can choose an appropriate level for their business and move in stages towards it.

This project's goals are to maximize ability for roll-out and to defy antiquating itself while allowing to certify under a specific security maturity level. As technology and process studies provide greater insight to business with each passing year, it has become important for ISECOM methodologies to avoid the necessity of product-based methods, traditional risk analysis which requires constant upkeep of threat assessment, vulnerability assessment, and asset values, and best practices which are not specific to the organization applying it.

For those looking for a security maturity model, need a certifiable security management process, or require a comprehensible method for structuring security processes, the SOMA project will provide the answer.

 If you are interested in helping with this project please contact us. 

 

Join the ISECOM page on Facebook  Follow us on Twitter  

SUBSCRIBE TO ISECOM NEWS
 
VIEW ALL MAILING LISTS

Join the ISECOM PLATINUM, GOLD or SILVER TEAM


 

ISECOM is an open, collaborative, non-profit, scientific, security research organization registered in Catalunya, Spain.  All research here has been performed without commercial or partisan influence.  Contact us directly to be a security researcher on the ISECOM team.

Disclaimer:  While all documents on this site are available under Copyleft and the Open Methodology License, do check the licenses within each tool or document prior to copying, modifying, or distribution for any individually stated requirements.  Additionally, all research is provided here for information purposes only and ISECOM is not responsible for any misuse.


www.isecom.org - www.osstmm.org www.hackerhighschool.org - www.isestorm.org
www.opse.org - www.opst.org - www.opsa.org - www.owse.org
  If you have any comments, questions, or to note broken links on this website contact the Webmaster.