24/7 detection and prevention of IT security incidents by first line security monitoring.

Placeholder for Developers behind screensDevelopers behind screens

About Nomios

Nomios is an international, independent provider of cutting-edge cyber security systems, business-critical networks, cloud solutions and managed services. The company supports its customers in implementing innovations by providing them with best-in-class technologies. By combining technology, processes and expertise, it creates next-generation solutions and services. Nomios has a proprietary Security Operations Center (SOC24) solution.

Placeholder for NomiosNomios

We take care of the security of your data

SOC24's qualified staff and the engineering support of Nomios Group, which has been operating in the security market since 2012, guarantee a reliable implementation of operational services. This linkage makes SOC24 a reliable and experienced business partner for many institutions that have the need to handle and analyze incidents in different variants, often after hours of operation of their enterprise or SOC department. What sets us apart?

  • international experience and international customers
  • earlier reaction to new threats
  • more than 400 certified engineers
  • we meet KRI requirements
  • we meet the requirements of D of the FSC and its equivalents for insurance funds
  • compliance with RODO

Security Operations Center

Year by year, cyber incidents are becoming a more serious problem for Polish companies. A report by advisory firm KPMG shows that more than 80% of companies have experienced such incidents, and half of those surveyed have problems hiring and retaining specialists responsible for cyber security. Due to the growing demand for security incident analysis and operational support, SOC24 was established in May 2018.

SOC24's qualified staff and Nomios Poland's engineering support ensure that the operational service is carried out reliably. This connection makes SOC24 a reliable and experienced business partner for many institutions that have a need for incident handling and analysis in various variants, often after the operating hours of their company or SOC department.

First Line SOC is a service that consists of continuous observation of the customer's infrastructure by first line SOC operators, which allows incidents to be detected and reported as soon as they are detected. Operators monitor customer logs, processes and systems using advanced techniques to collect and collate data from various sources. This allows them to quickly detect unusual or dangerous activity on the infrastructure. When potentially dangerous activity is detected, SOC operators record and describe the event in the appropriate system, notifying the customer via the system or a second line of SOC operators.

Information on the merger of Nomios, SOC24 and TukanIT.

    Our services

    Rapid response to the incident

    Security monitoring

    We offer a professional service in which our Security Operation Center operators monitor and alert you to all detected security incidents and unusual activity in your infrastructure.

    Incident analysis

    This is an advanced service, which includes all the analytical tasks related to handling security incidents, as well as proactive actions aimed at protecting your infrastructure in the best possible way.

    Security services management

    This consists in the activation, configuration, monitoring and administration of your IT security systems. It can be provided locally (on your premises) or centrally (in SOC24 or in the manufacturer's cloud) in 8/5 or 24/7 mode.

    Placeholder for Support engineer smiling SOC24Support engineer smiling SOC24

    Trust in your SOC partner



    SOC24 provides 24/7 monitoring, advanced second line services and managed security services. Security Operations Center is a service that helps detect and prevent IT security incidents. In addition, SOC24 handles incidents, finds threats, monitors logs in your SIEM system and provides periodic reports.

    Monitoring, analysis, detailed and proactive reporting of events

    Response by first line operators under 15 minutes.

    Made in Poland. Talk to local experts who speak your language and understand your challenges.

    Incident handling in the context of response scenarios developed together with the customer

    Proactive and iterative monitoring of logs in SIEM to detect and isolate, advanced security threats

    Regular reports with descriptions of detected threats and response times


    Latest news and blog posts