CERT-In Compliant | 24/7 Monitoring

Managed SOC for India
Your 24/7 Security Operations Partner

Building an in-house SOC costs ₹2–5 crore per year in salaries alone. Ogma's Managed SOC delivers the same 24/7 coverage, threat hunting, and incident response — at a fraction of the cost.

Reference card

Service
Managed SOC (Security Operations Centre) as a Service — 24×7 detection, triage, investigation, and response across the customer's security stack. Delivered by Ogma's India-based engineering team.
SIEM platforms supported
FortiSIEM, Microsoft Sentinel, Splunk Enterprise Security, IBM QRadar, Securonix. Customer choice — Ogma operates each. SOAR via FortiSOAR, Microsoft Sentinel automation, or Splunk SOAR.
Coverage hours
24×7 monitoring with three-shift India-based analyst roster. Tier 1 / 2 / 3 escalation. Critical-incident SLA: 15 minutes acknowledgement, 1 hour first response.
Telemetry sources
FortiGate firewalls, FortiEDR / CrowdStrike Falcon / Microsoft Defender XDR endpoint, Microsoft 365 / Azure AD audit, AWS CloudTrail, Active Directory / Entra ID, custom application logs, network flow data.
Indian compliance fit
RBI Cyber Security Framework, SEBI CSCRF (2026), DPDPA 2023 SDF documentation, CERT-In 180-day log retention + 6-hour incident-reporting workflow, ISO 27001:2022 evidence packs.
Onboarding timeline
2-week discovery + sizing, 4–6 week SIEM rule and use-case build, 2-week parallel-run, then live SOC handover. End-to-end: 8–10 weeks for a typical enterprise.
Reporting
Daily incident summary, weekly SOC operations report, monthly executive review, quarterly business review, on-demand audit-evidence pack. Customer-portal access to live ticket queue.
Commercial
Per-event-per-second (EPS) or per-endpoint annual contract. INR billing with applicable GST, Indian-entity contracting, no FX exposure. 1-year and 3-year terms available.

Build vs Buy — The Real SOC Cost

In-House SOC

4 SOC analysts (24/7 shift coverage) ₹1.2Cr/yr
SIEM platform license ₹40L/yr
SOAR / ticketing platform ₹15L/yr
Threat intelligence feeds ₹10L/yr
Training & certifications ₹8L/yr
Total (Minimum) ₹1.73Cr+/yr

Ogma Managed SOC

24/7 analyst coverage (dedicated team) ✓ Included
SIEM + log management ✓ Included
Incident response ✓ Included
Threat intelligence ✓ Included
Monthly compliance reports ✓ Included
Starting From Contact for Pricing

What Our Managed SOC Includes

24/7 Threat Monitoring

Round-the-clock monitoring of endpoints, network, cloud, and identity logs. No alert goes uninvestigated.

Alert Triage & Correlation

Our analysts separate real threats from noise. You're only notified for confirmed incidents — no alert fatigue.

Incident Response

When a real threat is detected, our team responds — containing, investigating, and eradicating within defined SLAs.

Proactive Threat Hunting

Monthly threat hunting exercises to proactively look for attackers who've bypassed automated detection.

Compliance Reporting

Monthly security reports with incident summaries, KPIs, and evidence packages for CERT-In, ISO 27001, and RBI audits.

Vulnerability Management

Regular vulnerability scans and prioritized remediation lists. We track patch compliance and follow up on open risks.

Frequently Asked Questions

We support organizations from 100 to 10,000+ users. Our SOC service is right-sized for each client — smaller organizations get focused coverage on their critical assets, while large enterprises get full-scale monitoring with dedicated analysts.

We deploy enterprise SIEM solutions (Microsoft Sentinel, Elastic SIEM, or FortiSIEM depending on your environment and budget) integrated with your existing infrastructure. We also integrate with security tools you already own — CrowdStrike, FortiGate, Cato, etc.

Yes. Under CERT-In's 2022 directions, organizations must report incidents within 6 hours. Our SOC team prepares and files CERT-In incident reports on your behalf, maintains the required 180-day log retention, and prepares evidence packages for regulatory inquiries.

For critical incidents (ransomware, active breach, data exfiltration), our SLA is 15 minutes to initial response and 1 hour to containment action. We measure and report on this KPI in your monthly report. For high-priority incidents, you receive direct phone calls from our SOC lead.

Get 24/7 Security Coverage Without Building a Team

Talk to Ogma's SOC team. We'll assess your current security posture and design a managed SOC program that fits your budget and compliance requirements.