On the national scene, the operating model of the public sector's Cybersecurity Operations Centres (SOCs) varies depending on the public body that has this service. Thus, there are cases where the SOC is operated by staff of the Public Administration or by external cybersecurity service providers
Faced with this situation, and to achieve the integration of all of them, regardless of their management model, the National SOC Network has been designed based on a collaborative model by categories (public and private) and levels (gold and informed); all with the purpose of facilitating the exchange of information between all the agents involved in the operation of these Centres.
Category that includes the public bodies represented in the National SOC Network that have a Cybersecurity Operations Centre.
Category that includes companies and cybersecurity service providers that cooperate in the operation of a public sector SOC. Depending on the level of collaboration of the members of this category, two levels of participation have been established.