Audit of the playbooks and detection methods of an external Security Operation Center (SOC) provider