Overview
"Capita's Managed Secure Operations Centre (SOC) sits at the core of our Cyber Security capabilities, providing a secure, managed 24x7x365 service designed to protect Capita and Capita Customer services and data from Cyber Threats, ensuring digital assets are secure and compliant with industry standards. Capita's SOC service is built upon Microsoft's industry leading Sentinel platform, which is an industry recognised security monitoring, threat detection, and incident response technology. Designed around a defined set of 'building blocks' and service levels the service is flexible, scalable, and customisable to meet organisational needs, while providing a solid baseline foundation to ensure a minimum level of protection and monitoring.
Service Options:
Foundation — Included with all Capita supplied and managed solutions. Ensures a monitoring foundation and solid Cyber Security baseline. Features: 24/7 Monitoring: Continuous monitoring of your IT environment; Standard Threat Detection: Identification of common threats using predefined rules; Incident Response: Initial response to security incidents with escalation and support to the appropriate lines of service support team; Monthly Reporting: Standard reporting of security Incidents and SLA performance.
Intermediate — All Foundation Features, plus: Automated Threat Detection: Utilising AI and machine learning for more sophisticated threat identification; Monthly Reporting with option of service delivery meetings with an Operational Security representative; Threat Intelligence Integration: Access to global threat intelligence feeds for proactive threat management.
Advanced — All Intermediate Features, plus: Customizable Use Cases, Playbooks, Runbooks: Tailored automated responses to specific threats; Aligned Security Analyst: A specialist Security analyst aligned to your account; Compliance Management: Assistance with compliance audits, evidence gathering and reporting to meet a number of recognised security standards; Compliance Based Reporting: Supporting regulatory and security compliance frameworks including PCI, ISO 27001, and NIST.
Key Benefits: Security Vetted Staff — UK based security analysts vetted to BPSS level, with optional SC level clearances if required, capable of handling up to HMG restricted classification; Integrated threat intelligence feeds: To enable rapid detection and analysis of potential Incidents; Improved Security Posture Management — continuous monitoring and advanced threat detection capabilities; Cost Efficiency — reduce the costs associated with maintaining an in-house security team and infrastructure; Expertise and Support — 24x7x365 monitoring, analysis, and incident response with option for named resources; Scalability — service can scale with your business needs; Flexibility — Three distinct levels of service, with the option to choose add-on modules; Compliance — industry regulations and standards through reporting and audit capabilities; Location — UK hosted and managed service, with optional full UK sovereign delivery.
Additional service characteristics (from Security Monitoring Product document):
- UK-based analysts with public-sector experience
- Incident triage, containment and coordinated response
- Clear escalation paths aligned to client risk appetite
- Built on Microsoft Sentinel and Defender XDR, reducing tooling sprawl while increasing detection fidelity.
This service supports customers using Amazon Web Services (AWS) and can be delivered in conjunction with AWS-native services including AWS native security tooling.
Highlights
- Security Vetted Staff: UK based security analysts vetted to BPSS level, with optional SC level clearances if required. Capable of handling up to HMG restricted classification.
- Improved Security Posture Management: With continuous monitoring and advanced threat detection capabilities, our Managed SOC service helps you stay ahead of potential security threats.
- Flexibility: Three distinct levels of service, with the option to choose add-on modules that suit your organisation's needs.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Pricing
Custom pricing options
How can we make this page better?
Legal
Content disclaimer
Support
Vendor support
Incident Response Targets
P1 – Critical Definition: Immediate, high-impact security incident requiring urgent action. Initial Response Target: Within 15 minutes. Resolution Approach: Continuous SOC handling until escalation, customer handover, containment by the responsible resolver group, or an agreed closure path is established.
P2 – High Definition: Significant security event or incident with material impact risk. Initial Response Target: Within 1 hour. Resolution Approach: Prioritised handling and escalation.
P3 – Medium Definition: Moderate impact event requiring investigation and action. Initial Response Target: Within 4 hours. Resolution Approach: Managed through operational queue and escalation as required.
P4 – Low Definition: Low-impact, informational, or routine security event. Initial Response Target: Within 1 business day. Resolution Approach: Best endeavours within the agreed operating model.
Response targets are measured from alert or ticket creation to first analyst action and documented handling.
Capita provides ongoing support for this service through its dedicated Service Desk. Customers can raise incidents, service requests, and support queries via email and agreed service management channels.