Audit of NRC's Network Security Operations Center
Report Information
Recommendations
Revise information technology service contract requirements to include SOC-specific performance objectives.
Revise information technology service contract requirements to define SOC functional requirements.
Define in policy, SOC functions and support obligations to NRC stakeholders, with emphasis on information reporting and technical support requirements.
Revise the information technology services contract to align with agency policy defining SOC functions and support obligations to NRC stakeholders.