A security operations center (SOC) is the central nervous system of any advanced cybersecurity program. But even the most well-funded, highly organized and properly equipped SOC is often no match for a simple misconfiguration error. Firewalls, vulnerability management and endpoint tools are inherently weak without an added layer that includes analysis of daily exposures caused by configuration errors, exploitable vulnerabilities, mismanaged credentials and other common points of risk. The right attacker-based vulnerability management tools can provide the next generation of risk quantification for both cloud and on-premises environments.
Source: https://www.helpnetsecurity.com/2021/04/12/soc-cybersecurity-program/