This study aims to help the Security Operation Center (SOC) suppliers in Taiwan obtain a thorough understanding of enterprises’ demand of information security service; furthermore, this study would like to explore the potential business opportunities in the market of Taiwan’s enterprises so that it can serve as a reference for the SOC suppliers in the future. The research is conducted by semi-structured in-depth interviews. There are six interviewees, and three of them are employed by the SOCs in the range of this study. The three interviewees answered ten questions in the service provider’s point of view. The other three interviewees are employed in large enterprise and corporations that use the SOC services in the range of this study as well. They answered twelve questions from the client’s point of view. The interview results are analyzed by the Kano model and from the perspective of four main questions of this study. The conclusions are as follows: 1. Clients prefer the SOC that provides a sense of stability, reliability and security of their information security. 2. Under the same charge, the SOC that offers a higher customer value stands out. 3. An enterprise will continue to use a SOC service when it can reduce the workload of information security affairs in an enterprise. 4. The three most important equipment at the SOC are intrusion prevention system, web application firewall, and network firewall; they are also the priorities that a SOC should invest in. 5. The accuracy and promptness of reporting information security events is the key to success of the SOC. 6. To fulfill the need of Taiwan’s enterprises altogether, an SOC needs to provide information security service, professional service and early warning service simultaneously. 7. An ideal SOC service is able to help an enterprise to reduce the chances of legal action. Key word: Security Operation Center (SOC), information security demand, potential business opportunities