> ## Documentation Index
> Fetch the complete documentation index at: https://mintlify.com/iLotuus/Enterprise-SOC-Architecture/llms.txt
> Use this file to discover all available pages before exploring further.

# Enterprise SOC Architecture

> Comprehensive Security Operations Center architecture integrating Wazuh SIEM/XDR, Elastic Stack, Suricata IDS, TheHive, and SOAR automation

<div className="relative overflow-hidden dark:bg-[#0e2444] bg-gradient-to-br from-[#0e2444] to-[#1a3a5c] py-20">
  <div className="max-w-6xl mx-auto px-6 lg:px-8">
    <div className="grid lg:grid-cols-12 gap-12 items-center">
      <div className="lg:col-span-7">
        <h1 className="text-5xl lg:text-6xl font-bold dark:text-white text-white mb-6">
          Enterprise SOC Architecture
        </h1>

        <p className="text-xl dark:text-gray-300 text-gray-100 max-w-2xl mb-8">
          Build a comprehensive Security Operations Center with integrated threat detection, SIEM/XDR platform, automated incident response, and real-time security monitoring.
        </p>

        <div className="flex flex-wrap gap-4">
          <a href="/introduction" className="inline-flex items-center justify-center px-6 py-3 rounded-lg font-semibold transition-colors bg-[#3b87f9] text-white hover:bg-[#2c6fd9] no-underline">
            Get Started
          </a>

          <a href="/architecture-overview" className="inline-flex items-center justify-center px-6 py-3 rounded-lg font-semibold transition-colors border border-white/30 bg-white/10 text-white hover:bg-white/20 no-underline">
            View Architecture
          </a>
        </div>
      </div>

      <div className="lg:col-span-5 hidden lg:block">
        <div className="dark:bg-[#1a3a5c]/50 bg-[#1a3a5c]/30 backdrop-blur-sm rounded-2xl border dark:border-[#3b87f9]/30 border-white/20 p-6">
          <div className="space-y-4">
            <div className="flex items-center gap-3">
              <div className="w-3 h-3 rounded-full bg-[#3b87f9]" />

              <span className="dark:text-gray-300 text-gray-100 text-sm">Multi-layered threat detection</span>
            </div>

            <div className="flex items-center gap-3">
              <div className="w-3 h-3 rounded-full bg-[#3b87f9]" />

              <span className="dark:text-gray-300 text-gray-100 text-sm">Centralized SIEM/XDR platform</span>
            </div>

            <div className="flex items-center gap-3">
              <div className="w-3 h-3 rounded-full bg-[#3b87f9]" />

              <span className="dark:text-gray-300 text-gray-100 text-sm">Automated incident response</span>
            </div>

            <div className="flex items-center gap-3">
              <div className="w-3 h-3 rounded-full bg-[#3b87f9]" />

              <span className="dark:text-gray-300 text-gray-100 text-sm">Real-time monitoring & analytics</span>
            </div>
          </div>
        </div>
      </div>
    </div>
  </div>
</div>

<div className="mt-16 mb-16 max-w-5xl mx-auto px-6">
  <h2 className="text-3xl font-bold dark:text-white text-gray-900 mb-4">Quick Start</h2>
  <p className="text-base dark:text-gray-400 text-gray-600 mb-8">Get started with the SOC architecture in a few simple steps</p>

  <Steps>
    <Step title="Review the architecture overview">
      Understand the high-level design and how different security components work together to provide comprehensive threat detection and incident response capabilities.

      <Card title="Architecture Overview" icon="sitemap" href="/architecture-overview">
        Explore the complete SOC architecture diagram and component relationships
      </Card>
    </Step>

    <Step title="Explore architecture components">
      Learn about each layer of the SOC stack, from network intrusion detection to SIEM platforms and automated response systems.

      <CardGroup cols={2}>
        <Card title="Detection Layer" icon="shield-halved" href="/components/detection-layer">
          Snort and Suricata IDS/IPS for network threat detection
        </Card>

        <Card title="SIEM Platform" icon="chart-line" href="/components/siem-platform">
          Wazuh for centralized security event monitoring
        </Card>
      </CardGroup>
    </Step>

    <Step title="Plan your deployment">
      Review infrastructure prerequisites, network topology requirements, and component installation procedures.

      <Card title="Deployment Guide" icon="rocket" href="/deployment/prerequisites">
        Start planning your SOC infrastructure deployment
      </Card>
    </Step>
  </Steps>
</div>

<div className="mt-16 mb-16 max-w-5xl mx-auto px-6">
  <h2 className="text-3xl font-bold dark:text-white text-gray-900 mb-4">Architecture Components</h2>
  <p className="text-base dark:text-gray-400 text-gray-600 mb-8">Explore the core components that power this enterprise SOC architecture</p>

  <CardGroup cols={3}>
    <Card title="Detection Layer" icon="shield-halved" href="/components/detection-layer">
      Multi-layered IDS/IPS with Snort and Suricata for comprehensive network threat detection
    </Card>

    <Card title="SIEM Platform" icon="chart-line" href="/components/siem-platform">
      Wazuh SIEM/XDR for centralized security event management and endpoint protection
    </Card>

    <Card title="Log Aggregation" icon="database" href="/components/log-aggregation">
      Elastic Stack with Logstash and Elasticsearch for scalable log processing
    </Card>

    <Card title="Infrastructure Monitoring" icon="server" href="/components/infrastructure-monitoring">
      Zabbix and Prometheus for real-time infrastructure health and performance metrics
    </Card>

    <Card title="Incident Response" icon="bell" href="/components/incident-response">
      TheHive platform for coordinated security incident management and investigation
    </Card>

    <Card title="Automation & SOAR" icon="wand-magic-sparkles" href="/components/automation-soar">
      Cortex SOAR for automated threat response and security orchestration
    </Card>
  </CardGroup>
</div>

<div className="mt-16 mb-16 max-w-5xl mx-auto px-6">
  <h2 className="text-3xl font-bold dark:text-white text-gray-900 mb-4">Key Features</h2>
  <p className="text-base dark:text-gray-400 text-gray-600 mb-8">Built for enterprise security operations with scalability and automation in mind</p>

  <div className="grid md:grid-cols-2 gap-6">
    <div className="dark:bg-[#1a1d27] bg-gray-50 rounded-xl border dark:border-[#27272a] border-gray-200 p-6">
      <div className="flex items-start gap-4">
        <div className="w-10 h-10 rounded-lg bg-[#3b87f9]/10 flex items-center justify-center flex-shrink-0">
          <svg className="w-5 h-5 text-[#3b87f9]" fill="none" stroke="currentColor" viewBox="0 0 24 24">
            <path strokeLinecap="round" strokeLinejoin="round" strokeWidth={2} d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z" />
          </svg>
        </div>

        <div>
          <h3 className="text-lg font-semibold dark:text-white text-gray-900 mb-2">Multi-layered Protection</h3>
          <p className="dark:text-gray-400 text-gray-600 text-sm">Combine Snort and Suricata IDS/IPS for comprehensive network intrusion detection and prevention</p>
        </div>
      </div>
    </div>

    <div className="dark:bg-[#1a1d27] bg-gray-50 rounded-xl border dark:border-[#27272a] border-gray-200 p-6">
      <div className="flex items-start gap-4">
        <div className="w-10 h-10 rounded-lg bg-[#3b87f9]/10 flex items-center justify-center flex-shrink-0">
          <svg className="w-5 h-5 text-[#3b87f9]" fill="none" stroke="currentColor" viewBox="0 0 24 24">
            <path strokeLinecap="round" strokeLinejoin="round" strokeWidth={2} d="M13 10V3L4 14h7v7l9-11h-7z" />
          </svg>
        </div>

        <div>
          <h3 className="text-lg font-semibold dark:text-white text-gray-900 mb-2">Automated Response</h3>
          <p className="dark:text-gray-400 text-gray-600 text-sm">TheHive and Cortex SOAR automate incident response workflows and threat mitigation</p>
        </div>
      </div>
    </div>

    <div className="dark:bg-[#1a1d27] bg-gray-50 rounded-xl border dark:border-[#27272a] border-gray-200 p-6">
      <div className="flex items-start gap-4">
        <div className="w-10 h-10 rounded-lg bg-[#3b87f9]/10 flex items-center justify-center flex-shrink-0">
          <svg className="w-5 h-5 text-[#3b87f9]" fill="none" stroke="currentColor" viewBox="0 0 24 24">
            <path strokeLinecap="round" strokeLinejoin="round" strokeWidth={2} d="M7 12l3-3 3 3 4-4M8 21l4-4 4 4M3 4h18M4 4h16v12a1 1 0 01-1 1H5a1 1 0 01-1-1V4z" />
          </svg>
        </div>

        <div>
          <h3 className="text-lg font-semibold dark:text-white text-gray-900 mb-2">Unified Visibility</h3>
          <p className="dark:text-gray-400 text-gray-600 text-sm">Centralized dashboards and event correlation across all security tools and infrastructure</p>
        </div>
      </div>
    </div>

    <div className="dark:bg-[#1a1d27] bg-gray-50 rounded-xl border dark:border-[#27272a] border-gray-200 p-6">
      <div className="flex items-start gap-4">
        <div className="w-10 h-10 rounded-lg bg-[#3b87f9]/10 flex items-center justify-center flex-shrink-0">
          <svg className="w-5 h-5 text-[#3b87f9]" fill="none" stroke="currentColor" viewBox="0 0 24 24">
            <path strokeLinecap="round" strokeLinejoin="round" strokeWidth={2} d="M4 7v10c0 2.21 3.582 4 8 4s8-1.79 8-4V7M4 7c0 2.21 3.582 4 8 4s8-1.79 8-4M4 7c0-2.21 3.582-4 8-4s8 1.79 8 4" />
          </svg>
        </div>

        <div>
          <h3 className="text-lg font-semibold dark:text-white text-gray-900 mb-2">Scalable Log Management</h3>
          <p className="dark:text-gray-400 text-gray-600 text-sm">Elastic Stack provides high-performance log aggregation and long-term retention</p>
        </div>
      </div>
    </div>
  </div>
</div>

<div className="mt-16 mb-16 max-w-5xl mx-auto px-6">
  <div className="dark:bg-[#1a1d27] bg-gray-50 rounded-2xl border dark:border-[#27272a] border-gray-200 p-8 text-center">
    <h2 className="text-3xl font-bold dark:text-white text-gray-900 mb-4">Ready to build your SOC?</h2>

    <p className="text-lg dark:text-gray-400 text-gray-600 max-w-2xl mx-auto mb-6">
      Explore the complete architecture documentation and start planning your enterprise security operations center deployment.
    </p>

    <a href="/introduction" className="inline-flex items-center justify-center px-6 py-3 rounded-lg font-semibold transition-colors bg-[#3b87f9] text-white hover:bg-[#2c6fd9] no-underline">
      Get Started Now
    </a>
  </div>
</div>
