Your 24×7 Security Operations Centre.
Centralised log management, real-time threat detection, and 180-day tamper-proof audit trails — managed by named SOC analysts from India. Built to satisfy RBI BCSF Control 8, IS Audit inspections, and ISO 27001 logging requirements.
Six capabilities. One managed SOC.
Every component is managed by Golonex. You get analyst coverage, a SIEM platform, and compliance-ready audit logs — without running your own security operations team.
Log Ingestion & Centralisation
Collect logs from every source in your environment — firewalls, switches, routers, servers, CBS, payment systems, Windows AD, and cloud workloads — into a single, tamper-evident log platform.
24×7 SOC Analyst Monitoring
Named SOC analysts review alerts around the clock. Threats are triaged, escalated with context, and never left sitting in a queue overnight.
Real-Time Threat Detection
Correlation rules, behavioural analytics, and threat intelligence feeds detect lateral movement, privilege escalation, account takeover, and anomalous data access as they happen.
180-Day Tamper-Proof Audit Trail
All logs retained for a minimum of 180 days in a write-protected, integrity-verified store. Meets RBI BCSF Control 8 and IS Audit requirements. Logs are production-ready for auditor inspection.
SIEM Dashboard & Reporting
Live security posture view for your IT team. Weekly digests and monthly trend reports for management. Board-level risk summaries available quarterly.
Incident Response Escalation
When a confirmed incident is detected, the SOC follows a defined escalation path — your team is notified, a case is opened, and response actions begin. No ambiguity about who does what.
Every source in your environment.
An audit trail is only useful if it captures everything. We ingest logs from every relevant source — network devices, servers, banking systems, endpoints, cloud — into a single tamper-evident store.
RBI inspectors typically ask to see firewall logs, CBS access logs, and Windows AD events going back 180 days. Golonex ensures all of these are centralised, indexed, and retrievable on demand — in the format an auditor can inspect.
- → Firewalls (Fortinet, Palo Alto, Sophos, Cisco ASA, pfSense)
- → Switches & routers (Cisco, Aruba, Juniper, Ubiquiti)
- → Windows Active Directory — logon events, group changes, admin actions
- → Core Banking System (CBS) — access logs, transaction anomalies
- → Payment systems and internet/mobile banking channels
- → Linux and Windows servers — OS events, privilege changes
- → Cloud workloads (AWS CloudTrail, Azure Monitor, GCP Audit Logs)
- → Email security gateway (delivery, block, and phishing events)
- → Endpoint protection (EDR alerts and containment events)
- → VPN and remote access (session events, failed authentications)
Built for RBI and ISO 27001.
Every control requirement below maps to a specific SOC deliverable. When an RBI inspector or IS auditor asks for evidence, it exists.
| Control / Framework | Requirement | How Golonex SOC Satisfies It |
|---|---|---|
| RBI BCSF Control 8 | Audit trail — logs maintained 180 days, tamper-proof | 180-day write-protected log retention, integrity checksums on every stored log |
| RBI IS Audit | Evidence of continuous monitoring and incident detection | SOC analyst logs, alert records, and escalation tickets provided as audit evidence |
| ISO 27001 — A.8.15 | Logging and monitoring of activities | Centralised SIEM with correlation rules and documented log management policy |
| DPDP Act 2025 | Breach detection and 72-hour notification to Data Protection Board | SOC escalation runbook triggers DPDP breach notification workflow automatically |
Managed SOC, log-only, or bundled.
Choose the coverage level that matches your team's capacity and your compliance obligations.
Managed SOC (full service)
Golonex owns the SIEM platform, ingestion pipelines, correlation rules, and 24×7 analyst coverage. Monthly fixed fee. No hardware required on your premises.
SOC + EDR/MDR bundle
SOC monitoring paired with our managed EDR/MDR service. Endpoint telemetry feeds directly into the SIEM — single pane, single team, single SLA.
Log Management only
Centralise and retain logs in a tamper-proof store without full SOC analyst coverage. Suitable for smaller institutions where the primary need is RBI audit trail compliance.
Frequently asked questions
What does 24×7 SOC monitoring actually include? +
Continuous ingestion of log data from your endpoints, network, cloud, and banking applications into a SIEM. Golonex SOC analysts monitor detections around the clock, investigate alerts, and respond to confirmed threats — including escalation, containment guidance, and incident documentation. You have a named contact and defined response SLAs, not a shared ticket queue.
How do 180-day tamper-proof logs satisfy RBI BCSF Control 8? +
BCSF Control 8 requires covered entities to retain audit logs from all critical systems for a minimum of 180 days in a form that cannot be altered or deleted. Our SIEM stores logs in write-once storage with cryptographic integrity verification — logs cannot be modified after ingestion. The 180-day retention window and integrity audit trail are available for IS audit inspection at any point during the engagement.
Do we need to purchase a SIEM licence separately? +
No. The SIEM is included in the managed SOC engagement — you don't negotiate with a vendor, manage a licence renewal, or provision capacity yourself. We absorb the SIEM as part of the service. If you already have a SIEM you want to retain, we can operate it as the managed SOC layer on top of your existing platform instead.
What alert response time do you commit to? +
Critical severity alerts are investigated within 15 minutes of detection. High severity within 1 hour. Response SLAs are defined per engagement tier and documented in the service agreement — not described in marketing copy and absent from the contract. You have a named SOC engineer to escalate to, not a call-centre queue.
Can this replace our in-house security team? +
For most mid-market firms without a dedicated SOC, yes — managed SOC replaces the 24×7 monitoring and detection function entirely. If you have an in-house security team, managed SOC augments them: they own response and remediation decisions; we provide the continuous monitoring, detection, and escalation layer they cannot staff around the clock.
Start with a log coverage assessment
Tell us your environment — devices, banking systems, and cloud footprint. We will map your current log coverage against RBI BCSF and IS Audit requirements and propose a managed SOC architecture.