Nomios Managed SOC is a managed Security Operations Center service that provides outsourced threat detection, incident management, and security monitoring for organizations. The service follows an agile and iterative working model structured around five phases: 1. Initialization: Discovery of the client's technical, functional, and organizational context through workshops, along with governance framing including Service Level Agreements and Quality Assurance Plans. 2. Risk Assessment: Cyber risk analysis based on the MITRE ATT&CK framework, combining external threat intelligence, internal security posture analysis, and risk consolidation to prioritize the most critical threats. 3. Detection: Technical implementation of use cases across existing security components including SIEM/XDR, EDR, NDR, and SOAR platforms. 4. Incident Management: Alert enrichment through investigation and sandboxing, correlation of indicators, and qualification of alerts as incidents based on criticality. 5. Prevention: Monthly consolidation and analysis of incidents, root cause analysis, and iterative risk re-evaluation using MITRE ATT&CK to propose improvement plans. The service offers 24x7 security monitoring across on-premises networks, public cloud environments, SaaS applications, and endpoints. Clients have direct access to named SOC analysts who work alongside the client's internal security and operations teams. Level 1 analyst actions (triage, enrichment) are automated, allowing human resources to focus on higher-value tasks. A Service Delivery Manager acts as a liaison between the client and technical teams.