thank you so much for making this kind of videos and publish for free in youtube it really helps a lot of people who are willing to start a career in Security end
@faanross Жыл бұрын
insanely good framework, 18 mins and i feel like i actually "get it" for the first time, esp also the relationship to threat hunting and ir. if you were ever inclined to build on this and extend those two disciplines in relation to this framework know it would be appreciated!
@ADFdiaries2 жыл бұрын
@JohnHubbard I love the way you deliver these kind of contents. I work in a SOC environment for five years now as a Tier 2 SOC Analyst. I would love seeing you discussing topics on Reporting/KPIs/Metrics for SOC related. This would help us understand more and be able to make these kind of reports on our own. Much appreciated. Please continue doing these kind of contents as it really helps understand those aspiring SOC Analysts. ❤️❤️❤️
@1UniverseGames3 жыл бұрын
Thanks a lot... I have a question- can you please make a video for making reports for SOC analyst , it would be great to learn how does this works
@konulaslanova26082 жыл бұрын
Thank you for this video. It was really helpful.
@AjitKumar-sy9cv4 жыл бұрын
This is a bird view of the SoC process. Very useful for non-industry people or beginner who is trying for the role. Thanks.
@nitindubey54724 жыл бұрын
this role sucks a lot i have heard from most of guys here in india most of firms they have night shift sometimes day shift in rotation one of my senior got health issues he moved to GRC side got ISO 27001 moved into pwc he and most of his colleagues says SOC roles in india sucks a lot because of company environment . and now a days job frequency are more in data science side still not that much good jobs in cyber security in india one can easily get data analyst role or even AI/ML role in small startup but cyber job openings are very few because only big firms invest in cyber security .
@Anilkumar-gz6li3 жыл бұрын
@@nitindubey5472 that's true.. because i work night shift's its horrible
@nitindubey54723 жыл бұрын
@@Anilkumar-gz6li yes one has to work in night shift but that's majority of guys are doing not just you you can switch to AUDIT roles also or cloud security is very good option by doing AWS certification . SOC is always good option for entry level cyber roles in INDIA and here competition is not that much otherwise in other software IT roles like data analyst ,web developer there is too much competition from guys who come from tier 1 colleges yes in AI/ML ,full stack jobs but way too much competition one has to face now a days everyone is trying for AI/ML data science very few talks about cyber roles I am also trying to get into SOC role as a fresher I have had education gap of 2 years because of gov job preparation but now learning cyber security things people always says there is more jobs in DATA SCIENCE OR WEB DEVELOPER but way to much competition one has to face to get even 15k job if someone is not from good college or have poor programming skills.
@adivasi68943 жыл бұрын
I saw your background image, had to do some OSINT into it...Made my day...
@DevOpsSkills3 жыл бұрын
This is really good content. Thanks a lot.
@theamazingjay1612 жыл бұрын
The last image summarizes perfectly how most SOCs are set up. Total chaos - but somehow it works. >:D
@egalegalegal21764 жыл бұрын
Thx for your Video series.
@abraham41243 жыл бұрын
Great video
@rogerioabreu30814 жыл бұрын
Amazing Video! Thank you
@yasinaltunterim3 жыл бұрын
thank you.
@rezamehrad85124 жыл бұрын
Thank you @SecHubb! Question, Please, I there any chance of going through SOAR tools and how they can help SOC analysts? AND Is it a correct way of thinking that some SOC analysts have "we removed SIEM it is OLD and we replaced it with SOAR" !! I think this is NONSENSE, but I wanted to know from your perspective, and better know SOAR application and how it helps security analysts? Thank you!
@SecHubb4 жыл бұрын
Hello, thanks for watching! SOAR is another important topic altogether and more of a process improvement tool that sometimes is also used for incident management as well. There's a lot of "it depends" in your question, but largely I do not think that a SOAR would be something that could replace a SIEM, they are two different tools for two different objectives. One primarily centrally collects, correlates, enriches and visualizes logs, and the other is there to help take manual, unnecessary tasks out of your work. While you may see features mixing in practice, I think in most cases both would be needed. SOAR (or at least automation in general) is super important when it comes to not driving analysts crazy with repetitive manual tasks. See the "virtuous cycles" talk on my channel for more detail on how automation keeps us all happy and efficient. kzbin.info/www/bejne/Z3-4m4djZd6EoMk
@rezamehrad85124 жыл бұрын
@@SecHubb Hello and Thank you for running the series. I enjoy it. Your feedback was really helpful and is the same as I believe. Thanks!