I am the random ski mask dude no one asked for or knew they needed 😅 😁

True, so many are them are just focusing on their cat or showing us what they are having for lunch.

Exactly. I was trying to get a day in the life video and people would be walking their dog or going for a run, or getting an expresso to start the day. Like i get it, you want to come off as super important and free but Im really trying to learn what the job is like.

Some videos are just "ok sit at the computer for 8 hours look at a couple phishing emails ok day over" I hate those types of videos, I like how this dude actually went through his first day makes me hopeful for my future in cybersecurity I just need someone to fu*king hire me 😅

If u can see and trackback the face of a Hacker is weird, if is security i prefer to trust the guy who hides his identity.

Exactly!!! So many videos where their talking about pay and how they got the job lol.

Yeah instead of the "I wake up every morning 20 minutes before daylight and read a whole book and have a whole ass breakfast. Then I work out and meditate and then go to work. Everything is great. The end."

Thank you for watching! 💚

How did you get the position. What was the requirement to get a internship position?

@@divonharrison2204 I am currently in the military and I will be retiring within the next few months. We have this program called Skillbridge. It is basically a chance for us transitioning out to intern into a company to get some type of knowledge or hands on experience. I found a company I was interested in, had an interview with them and then started a few months later. There wasn't any real requirements, but they say that having your Security+ is a good way to get in the door. I have that an a BS in Computer Science. They wanted me to start studying and take the CySA+ exam, but that will be something I will down the line later on.

@@Mr405DJ How's the SOC Analyst position been so far?

Thank you for watching! I'm glad it was of good use to someone without very good production value! 😅

Thank you for watching and for the kind words! 🙂

Hey! did you get a degree? or just certificates? Thanks

How's it been so far?

@@InfiniteTony it has been good so far. Doing training on Blue Team Level 1 and the Microsoft cert SC-200 along with a few other Azure certs. This is the period before actually working within the SOC

@@megatenfold7125 Awesome, well let me know how the job is if u can. I'd love to know!

@@synos0202 I had an associate degree in IT, no formal Cyber security training etc, just worked my way up from Service desk to here

Working remote is immeasurably better for a hermit like me ❤

How long is "neccesary" to work "on site" to learn the craft through experience before being able to go remote? (Cyber security analyst)

@@johnnycage8546 I started fully remote

@johnnycage8546 It really depends on the size of the company and needs of the security team. If there's onsite work that needs to be done daily or a few times a day then working remote probably isn't an option. Bigger companies have purely remote positions due to the abundance of work that can be performed remotely tuning their security tools and availability of remote access to all servers/endpoints to leverage in incident response. So, I wouldn't say you need to know more to work remote as a soc analyst but rather have to fight for the remote positions harder as they're more desirable and easier to apply to. Hope that helps some 😅

@@madhatistaken Agreed, fellow hermit. Remote is love, Remote is life.

Thank you for watching! I'll make sure to release similar content 🙂

Thank you for watching!! I hope to provide something useful for up and coming IT career seekers 😁

Thank you for watching! I'm trying to make new vids less...dense 😅

I also want to learn soc but don't have any proper pathway.. can you help me

@@faiz5627 Ive decided to do the Google cyber certification through Corsera to get and idea of some of the components whilst getting a cert, then, if I do enjoy it I will look at Comptia Sercurity + and Network +. Whilst doing all that I will learn a bit of Python, SQL and the basics of a few OS like Linux, MS and Apple. I'll be documenting the process and carefully building my resume around how and what I've learnt as well as doing Labs etc to gain experience in a CS environment. Hope that helps

​@faiz5627 Google John Strand. His platform Antisyphon training has a SOC Analyst training next week. 4 days..pay what you can. Apparently, they do this 2x a year so if you see this in time, you can jump on this before class starts. Registration ends tomorrow night I believe. No I'm not so affiliate and am enrolled in this class. Just spreading the word to people who want to get in this field

Good luck in the bootcamp! Cram as much knowledge in as you can!

Do u know any company hiring for entry level soc ? Im looking for one... i am based in NJ

💚

Glad to hear my older, less edited videos still provide some help to folks 😅

I was 1 of 12 people going into the first interview, that got dropped to 6 for the second interview, and then we had a 3rd with my bosses' boss with 4. It's definitely a position that required very little immediate technical knowledge on tools however they seemed to be very picky with the type of person they hired. The requirements seemed daunting, but I feel like I got lucky with this role as they seemed to want to find people who were capable of learning the necessary tools and concepts quickly and wanted to learn. The pay wasn't enough to entice experienced people so they were most likely choosing from a pool of applicants that all wanted to desperately get a foot in the door. I feel like most cyber security jobs get a large amount of applicants they brush off who clearly haven't done the necessary leg work to put themselves into the running. I used to think I should have been a shoe in for alot of soc roles given my degree and technical knowledge but after working in this job I've been brought down and humbled immensely. It's crazy how much you need to know to excel in the field.

Check out my phishing video! 😁kzbin.info/www/bejne/g5S5epd5grWFb80&ab_channel=MadHat

Thank you for the sub! I've heard similar horror stories. I don't work for a conventional SOC, the business might be a fortune 500 company but the security team is still getting built up as the company grows. We have on call rotations, but with all the tools they put in place, a lot of the attacks on the company are mitigated thankfully. Apparently, just over a year before I started, they had several thousand alerts and they're down to roughly 100 a day. I started the position at a very opportune time 😅

Good luck, keep applying and learning! 💚

Thank you for the algorithm boost ❤ I'm just trying to make helpful content for people trying to get into the field! There's boring moments for sure, but also nerve-wracking exciting ones when you find some juicy malware.

@@madhatistaken you're gonna hit at leastttt 50k subs this year. Bet. 🤙🏽

@@gadohimself That'd be awesome! 🤞 I'll keep posting as I learn new stuff, may the omnipotent algorithm be ever in my favor 😅

Good luck! 🤞🤞🤞

did you get it ?

@@KALISIOO lmao nah dont think so. Got ghosted, interviewed for them around the time I commented, no reply

Hey how goes it. I am trying to get into my first SOC role. No experience and no degree, trying to change careers. What did you need to get your foot in the door? any suggestions? Thanks!

@@tonyb5536 you should also make a custom cover letter for your job by uploading the entire job description AND your resume to gpt and sit back and watch the magic happen.

I've got zero certs 😅 I just know of several that covered what I learned in my bachelors degree. A+, CCNA, Security+, and part of the CISSP concepts all appear as far as I've looked into. I've been told about the cysa+ and thought about looking into it. I'm at the point now where I feel I can land a higher paying job on just what I know now, but maybe I'm being foolish and need some more certs 😅

@Mad Hat yeah that is fare enough. My course had ccna netacad built into it but there was no actual certification for it from cisco. Although i had to pass the final tests etc to gain the overall course completion. I really should have gone straight for the ccna certificate directly after i finished mine but i couldnt be bothered. Im kinda half way through cysa+ its pretty in depth. But at least the topics are somewhat concentrated. With security + there is just a heap of scenario questions for many different areas.

@@madhatistaken Thanks so much for the reply! I wish I had taken the time when I was younger to get my bachelor's, but I am 36 now sadly. I just completed CS50 online to get a basic understanding of programming, next I am planning on network and sec+ to get general understanding there. I do ctfs at night. My first goal is to get into a lvl 1 SOC analyst role to hopefully get some further on the job training. Is there anything more entry level than soc analyst, that's not helpdesk?

bro network. owasp check it out u will find ppl who can point you in the right direction. best way to land a paid role even if its super entry level you will finally have proof of ur skills being applied

I'll check it out once it's available on the many streaming platforms I'm subbed to! 😅 when I made the vid I googled bad actors and his photo came up. I've always thought the mummy movies were well done 💚💚💚

It's definitely helpful in putting yourself above the other job applicants going into soc applications. As for others, the CySA+ is great. BEHOLD a roadmap I found: pauljerimy.com/security-certification-roadmap/ Anything in blue could be beneficial! 💚

Yes! My first two years of my degree had 4 courses solely dedicated to cisco networking. Gave me very in depth understanding of network that set the groundwork for the rest of my cybersecurity knowledge to come!

I was at a couple help desk roles, combined it was about 1.5 years total. I'd advise you to start learning as much as you can with ANY security tools you have access to at work. If you can afford a few certs, try to get a few security related one's and specifically blue team ones. There's SOC analyst courses on TryHackMe and I believe hackthebox too. There's alot of resources and it can be overwhelming, but my biggest advice is start somewhere today and don't push it off till later.

@@madhatistaken what certs did you get before getting the Help desk jobs?

@Ib90 I had my associates for my first help desk and my bachelors for my second. No certs, my degree gave me the knowledge needed to pass A+, CCNA, Security+, and probably several other cyber security related certs though 😅

I don't have any inside knowledge on NOC roles but according to my research they primarily deal with network traffic which is just a fraction of what SOC roles cover. So while you may gain alot of knowledge on identifying malicious traffic purely through network analysis you may need to supplement your knowledge through self studying on malicious indicators on files, registry, emails, dlls, processes in general, etc. to get a good feel on what is "normal behavior" and what is someone trying to break in and hide from detection. Some NOC positions probably handle more logs than just network ones, but keep us posted on your position! Let us know how your first few days/weeks go!

@@madhatistaken Thanks for your response. And yes NOC technician is very similar to SOC analyst but SOC analysts are focused more on Security. I plan to do some projects like building web application firewall. By filtering and inspecting HTTP traffic between a web application and the Internet, a web application firewall aids in the protection of web applications. What's your opinion on this?

@TherealJallow Projects are a great way of both hardening your knowledge of security concepts while providing hands on experience. Plus it's extra stuff you can put on your resume to prove you're passionate about the field and committed to learning more! Analyzing web traffic is an important skill all soc analysts should have 💚

After applying to a metric crap ton of job applications on various sites, I started getting emails from recruiters as they search for profiles that match their criteria. That's what worked for me, but you could also try reaching out to recruiters on LinkedIn too, their premium account is free trial for a bit. Biggest tip is to just keep putting yourself (and your resume) out there! 🙂

@@madhatistaken Once I get my cysa I will give that a shot thanks

I sort of dug a bit deeper into the tool on my phishing video, but it works kind of like a proxy that sits in between our mail server and incoming mail. Without naming the tool itself (potentially company sensitive info), I can't go too much into depth on how it functions.

Yes, when I worked for an MSP we would send people out laptops to work on. We would inventory them to make sure that we had a track of what we sent out and then they would keep them until they were done working or they broke. At which point they/the company would send them back

This is what I would do in your shoes and kind of what I did. You don't want to lie on a resume, but as an ex-coworker of mine smartly advised, put down what you know you're capable of doing and learning in a few weeks' time on your resume. This means fluffing up your resume, remove irrelevant stuff to soc analysts and apply like crazy. Aim for 1000 applications. Go to job boards like LinkedIn, Ziprecruiter, etc. Or any website local to your area. Through the entire application process, cram your mind with podcasts (I recommend DarkNet Diaries) and study the Security+ and CISSP content (there's full study guide courses for both on youtube), AND go on HTB/TryHackMe and complete there soc analyst/blue team modules. The point of the podcasts, studying, and modules are to cram as much cyber security knowledge in your mind that come interview time you will be able to confidently explain concepts and talk the cybersecurity lingo. If your not getting any interviews consider getting another cert and if you're getting some interviews but not moving onto the second round do some self reflection on yourself. Did you answer technical questions confidently and correctly? Were you too unsure and may have presented yourself in any unlikable fashion that might make you a bad fit for the company culture? There's alot of reasons you might not get to the second round, but the biggest indicator that you're qualified for what you've been applying to is that first interview. I might make a comprehensive guide soon. My last few ones are a bit short. Hope that helps some 😅

I did college and no certs with 2ish years of helpdesk. Check my college degree video if you're interested in my degree 😅

​@@madhatistaken Seeing you make it gives me so much hope. I'm a sophmore at my cc getting a degree in cybersecurity and I start my first role as a help desk technician next week, everybody's been at my throat saying im going to regret doing help desk while still in school. So seeing you land a cyber job after help desk is very reassuring. Keep up the great work!

I believe the starting range is 50 to 80k. Depends on the company and how experienced you are going in of course. I'm at the bottom end of that range 😅

My last position was remote and this one is fully remote as well. It depends on the company, but working remote can be done safely with a company provided device and VPN.

Unfortunately just my university degree 😅. There's alot of blue team certs out there though you can get to help land a job. Here's a handy roadmap of alot of the certs available: pauljerimy.com/security-certification-roadmap/

I didn't use any 🙂I just applied like a mad man to job boards like Indeed, ZipRecruiter, LinkedIn, etc.

@@madhatistaken wow, that is impressive!

Experience I had put two service desk technician roles for 1.5 years worth plus my BS in cyber. I also added a couple side projects I did that pertained to security analyst work.

@@madhatistaken thanks for the response.. I’m currently in a service desk position and trying so hard to transition to SOC analyst. Plus I’ll be done with Bs in Information Technology next year. Do you think I need the Security plus Certification?

😂 this sounds like the good intro to a youtube video 🤔😅

I'd say it's technical much harder. I have to use my knowledge of coding daily and it's higher risk because an alert could be a security breach whereas my help desk role was hard because I had to deal with people being frustrated their computer, sign in, program, etc wasn't working. Different stress I guess 😅

I have a pretty extensive employment contract that I'm sure mentions something along non-disclosure of business related information. Out of an abundance of caution, I'm trying to be as vague about tooling as possible 😅

@@madhatistaken its ok I understand. By email filtering system do you mean secure email gateway?

@@missmary7503 The email system we use has many features, with one being a secure email gateway. It's setup in between our email provider, intercepting email before it can get to mailboxes and also retroactively pull emails it finds later to be malicious. 😁

The position is called differently by company which is odd imo. But, soc analyst, security analyst, cybersecurity analyst, IR analyst are typically how they're marked on job listings with some labeling them as security engineer or security specialist or cybersecurity engineer which are usually very different things compared to the usual analyst role, but HR might not know that distinction 😅

@@madhatistaken thanks for the quick response 😁and also, what did you use for interview prep?

digleman1 I searched soc/cybersecurity analyst interview questions and made notecards for each one. I reviewed each question a few days prior to interviewing. I also listened to cissp study guides throughout the application process, which might have helped make me sound more qualified (probably unnecessary, but didn't hurt) 😅

@@madhatistaken smart guy. In my current job, I read textbooks for CISSP, CISM, and many other cyber books to be more grounded in cyber security. I can still pursue the certifications later, but the focus is the knowledge and applying it.

I have a bachelors in Cybersecurity and a couple years in a MSP, a managed service provider which is a fancy way of saying I did help desk :) I went over what I learned in my bachelors in a different video. This position is exactly what a SOC does. I work with about 8 or so other analysts who monitor alerts for the entire organization comprised of 20,000+ employees.

@@madhatistaken I also have a similar background and I'm looking for a entry level role like the one you landed. Any recommondations would be helpful

Yea...I've had tech jobs before and my bachelors was in cybersecurity, but this was my first security only role 😁

Si, but I can still provisionally pass it 😅

They have a bunch of retirement plans, 401k, etc. I haven't looked in to any, I'm hoping to land a high profile job after I get some more experience and certifications.

@@madhatistaken thank you!

I'm sure I could at this point, but with a family to support a nighttime job would make family time difficult 😅

How's it coming along? I'm two weeks into my Cybersecurity Analyst role. Everything he said in this video is literally what I've been going through

@@mike_t_007 wound up taking a better shift for myself, and it’s going really well! It’s very much like the helpdesk of the security space but I feel like there’s a ton of room to grow and a lot of smart folks in the room to network with, so there’s that

The OG mask 😅

@@madhatistaken You are an OG my friend 😁🤗🤘

It's working from home. The job goes by many names: soc analyst, security analyst, cybersecurity analyst, information security analyst, but it's most commonly referred to as soc analyst so you can use that generally to search on job sites.

Thanks for stopping by :P

Also me was here LOOOOL