SOC’s is becoming an important reality able to support organizations, which operational core is not ICT, to deal with cybersecurity operations. The artefact will present a detailed overview discussing how automated solutions and design aspects can enhance the security posture of an organization according to specific risk policies and impact tolerance. The entire solution is designed according to principles exposed in important standards such as ISO27001 Annex and PDCA Model; they are envisaged as fundamental requirements for a compliant and resilient ISMS. Starting from those assumptions the operative approaches will be based on the ones proposed by NIST Cybersecurity Framework which many times reference ISO Annex, then will be focused NIST Incident Response Framework.