Modern SOC solutions require huge sums of licensing money, something that small businesses or independent security practitioners cannot afford.

SOC workflows require manual creation and analysis of security alerts, leading to slow investigation period and eventually may lead to analyst fatigue.

Resource-constrained SOCs struggle to keep pace with the high volume of alerts, hindering their ability to prioritize and investigate critical incidents. Also as the study implies that budget constraints are also one of the challenges that the small scale companies face.

A high volume of false positives creates alert fatigue, hindering the identification of genuine threats