Who is responsible for what
The responsibility for the SOC will rest with the General Secretariat of Digital Administration (SGAD) attached to the Secretary of State for Public Service, Ministry of Finance and Public Function, while the operation of the service will fall to the CCN-CERT of the National Cryptological Centre, in its capacity as National Government CERT.
On the one hand, the technical and strategic direction must include activities such as monitoring and management of the service, including coordination with the Security Officers of the entities and other actors involved, management of the incorporation of new entities to the service, coordination of the response to security incidents, as well as dissemination of information and promotion of the service.
On the other hand, the operation of the service will include, fundamentally, the implementation of the technical infrastructure and security services, cybersecurity procedures, the operation of cybersecurity and associated issues such as the detection of security incidents, among others.
The technical and strategic direction together with the operation of the service will follow the framework described below.
The entities integrated in the Cybersecurity Operations Centre maintain, through their Security Officer, their responsibility for the protection of the information and services under their responsibility. However, the SGAD will coordinate the response to security incidents between the different agents concerned.