A Security Orchestration, Automation and Response (SOAR) solution centralizes cybersecurity information to provide automatic responses. These actions can be active, such as the direct neutralization of a malware, or indirect and complex, such as the launch of additional investigations. The automatic behaviors are configured in advance, thanks to a workflow engine. Each written scenario is a playbook that will know what to do, when something happens, etc.
A SOC is a group of people that monitor the security of information systems. It is traditionally linked to cybersecurity monitoring, protection, and security assessment for any kind of assets like websites, applications, databases, data centers, servers, networks, desktops and other types of endpoints. They are all monitored, assessed, and hardened.