Advantages of the International Axians SOC

The Security Operations Center (SOC) is becoming a key topic for all organizations that want to take cybersecurity seriously. How to approach monitoring and defense is explained by Milan Mesić, an expert with over 20 years of experience in the field of networks and network security, and the head of the Cyber Security team at Axians Croatia, who is also working on the development of international cybersecurity initiatives for Axians’ Southeast region.

Why is the SOC an indispensable part of the security strategy today?

– Because threats are no longer static and local; they are global, fast, and often invisible until they have already caused damage. Without continuous monitoring and a structured incident response process, it is difficult to react in time. Our international Axians SOC enables 24/7 monitoring and active defense, and the added value comes from partnerships with leading security solutions like Check Point, which provide multilayered protection from the network to the cloud and endpoints.

What is the main advantage of the international Axians Security Operations Center compared to internal SOC teams?

– The greatest advantage is the international character and knowledge exchange between our teams. When a threat is detected in one environment, the lessons learned are immediately applied to other clients. Additionally, clients receive continuous coverage, expert teams, and structured processes that enable rapid response and minimize the impact of attacks. However, the international SOC is not just monitoring and response; it is a link within the broader portfolio of Axians’ security services. With over 1000 cybersecurity experts in Europe, we cover the entire spectrum of services, from strategy and technology to operational implementation, while continuously monitoring trends, threats, and regulations.

The costs of building your own SOC are high. How does Axians approach this challenge?

– An internal SOC requires a minimum of seven experts, a SIEM platform, and a whole range of tools, which in practice means costs exceeding half a million euros per year. With us, the client receives top-notch tools and an international team of experts working 24/7 – and this is done under a model that is far more cost-effective and flexible. This way, organizations can ensure a top level of protection without huge investments and maintenance costs.

What does the process look like when a new organization becomes a user of your SOC?

– The onboarding is clear but adaptable. We start with the design of the architecture, setting up agents, and defining security profiles. After testing and baselining, the client receives a dashboard with full visibility, and our team takes over 24/7 monitoring and incident response. This ensures structured protection and continuous threat monitoring from day one.

Can you highlight an example of collaboration between Axians SOC and technology partners?

– I would highlight Check Point Playblocks, a solution that enables automatic coordination of security systems. When one system detects a threat, the protection of the entire infrastructure is automatically activated. This means that endpoints, network gateways, cloud services, and other security elements communicate with each other in real-time and initiate a joint defense. For example, if one device is compromised, it is automatically isolated from the network, while other systems simultaneously prevent attempts to further spread the attack. This way, the risk is drastically reduced in the first seconds of the incident. It is especially important that all this happens without the need for manual intervention – the response time is measured in seconds, not minutes or hours. In combination with the work of our SOC team, which monitors and verifies events, the result is a multilayered, coordinated, and very fast defense. Clients receive a security mechanism that behaves like the immune system of the organization – as soon as a threat is detected, a response is initiated that protects the entire system, not just one part. Such a model of collaborative security represents a significant advancement over the traditional approach, where different security tools operated in isolation.

What are your plans for the future?

– We continue to expand the international SOC network and develop advanced services based on artificial intelligence and automation. Our focus is on enabling clients to achieve maximum security, with the simplest use and optimized costs.

Content created in collaboration with Axians Croatia