Our very own FaLLeN recently presented at BSides Delaware.
SOC teams and even IT departments in general are often seen as a barrier or an authority to be feared or disliked. This makes it harder for us to do our jobs effectively. End users try to skirt the rules, make excuses, or roll their own solutions to avoid talking to or upsetting the SOC team. This is generally because a) we suck at communication, and b) we really do view end users as imbeciles. The adversarial relationship is not conducive for business or security. This talk is about delineating some of these issues, and looking at some of the solutions.
I'm a network and systems administrator.