From gbhackers.com
In earlier years, everyone depends on SOC (including firewalls, WAF, SIEM,etc.) and the priority in building the SOC provides security and the CIA was maintained.
However, later the emergence of the attacks and the threat actors becomes more challenging and the existing SOC will not be able to provide better security over the CIA. There are many reasons for the failure of the existing SOC, where it only depends on the SIEM.