The shift to the cloud has only complicated how security teams must think about protecting applications that the organization develops. Forrester data shows that external attacks are most often carried out through software vulnerability exploits, and the SOC needs to be prepared for attackers to take advantage of this threat vector. In this report, we lay out a model for security teams to begin addressing detection and response for applications and address how application security teams and the SOC can work together.