Which of the following is most likely to be used as a just-in-time reference document within a security operations center?

A change management policy outlines the processes for managing changes to IT systems and infrastructure. While important for overall security governance, it does not serve as a real-time reference for incident response, making it less suitable for immediate operational needs in a SOC.

A risk profile assesses the potential risks faced by an organization and helps in prioritizing security measures. However, it is a strategic document rather than a tactical one, lacking the specific instructions needed for on-the-spot incident resolution in a SOC environment.

A Security Information and Event Management (SIEM) profile involves the configuration and rules used for monitoring security events. Although it is crucial for threat detection, it does not provide actionable procedures for responding to incidents, which is the primary function of a just-in-time reference document in a SOC.