Guides on detection, response and compliance.
Field notes from running a managed SOC — what to alert on, how the buying decisions differ, and how to make Indian security regulation survivable.
- Compliance··5 min read
CERT-In incident reporting: the 6-hour rule, explained
CERT-In’s directions require certain cyber incidents to be reported within 6 hours. Here’s what counts as a reportable incident, what the report must contain, and how a SOC makes the deadline survivable.
Read → - Buyer's guide··6 min read
MDR vs SIEM vs in-house SOC: which one do you actually need?
A buyer’s guide to the difference between a SIEM, MDR, and building an in-house SOC — what each one is, what it costs you in effort, and how to choose for a mid-market team.
Read → - Detection··6 min read
FortiGate log analysis: what to actually alert on
FortiGate firewalls generate huge log volumes. Here are the high-signal events worth alerting on — brute-force, mass-deny bursts, exposed admin surfaces and threat-intel hits — and the noise to suppress.
Read → - Compliance··7 min read
RBI Cyber Resilience Framework: a practical SOC compliance checklist
A plain-language checklist for the RBI Cyber Resilience Framework — which controls a managed SOC covers, which it only partly covers, and which belong with other vendors.
Read →
See it on your own logs.
Send 24 hours of FortiGate syslog and we’ll return a written triage analysis for your environment — free, no commitment.
Book a 30-min demo