Security Operations Center (SOC) Explained

Рет қаралды 68,011

Жыл бұрын

IBM Security QRadar Suite: ibm.biz/Security_Suite_QRadar
Security Operations Center (SOC) : ibm.biz/Security_Operations_C...
If you have a problem in cybersecurity, where do you turn? Modern organizations have a "SOC" or security operations center. Its mission is focused on detection and response; in this video, Jeff "the security guy" Crume explains the people, process, and tools involved. To ground the discussion, Jeff presents three security incidents and explains how they're handled by the SOC.
Get started for free on IBM Cloud → ibm.biz/ibm-cloud-sign-up
Subscribe to see more videos like this in the future → ibm.biz/subscribe-now
#AI #Software #Dev #lightboard #IBM #JeffCrume #QRadar #SOC

Пікірлер: 47

@user-yk6jt8hx1b 2 ай бұрын

one of the best video i have seen so far in SOC - easy to understand and follow

@chanyuan-cv4op Жыл бұрын

I especially like this teacher‘s lecture style, which is easy to understand and gives vivid examples!!! Update more 😮

@jeffcrume Жыл бұрын

Thanks so much for the kind complements!

@chanyuan-cv4op Жыл бұрын

I‘m Chinese and I can’t speak English. I‘m reading your course with automatic translation. 😁

@V4NQU15H3R 18 күн бұрын

It's a blessing to have a teacher like you sir! Really great concepts, Thankyou!!!!

@conwayniall Жыл бұрын

Love it, great explainer ❤ keep up the great work!!

@taiwoolaniyi7348 3 ай бұрын

Excellent delivery

@jeffcrume 3 ай бұрын

Thank you!

@hass123uk 11 ай бұрын

This was excellent, thanks for sharing.

@user-rs8uo3cc4y 8 ай бұрын

Nicely simplified.

@luizmsilvei Жыл бұрын

Very good! Thank you

@SanjayKumar-nk3kk 10 ай бұрын

Short and sweet

@MywesternfatherAsianfath-pj4wq 5 ай бұрын

Thank you so much professor

@jeffcrume 3 ай бұрын

You’re very welcome!

@PetBuddies 6 ай бұрын

Thank you

@angelkern 5 ай бұрын

It would be helpful to show how the Incident Response Team (IRT) works with the SOC. Some IRTs have an operational objective of being the Threat Hunters or Pen Tests.

@jeffcrume 5 ай бұрын

Good idea. I’ll consider that for a future video

@ismailcaylak1270 Жыл бұрын

wonderful

@Pixel-ff7rp 10 ай бұрын

thanks

@lahloudjiken Жыл бұрын

Good 👍

@user-uw1xi1wm8q Жыл бұрын

This is excellent!

@ahmedeltigani8138 6 ай бұрын

Ma man you're the best

@jeffcrume 5 ай бұрын

You’re very kind to say so!

@kaushalvedant Жыл бұрын

Please provide information on IBM NOC service.

@tyrojames9937 Жыл бұрын

👍🏾

@ashfaqahmed4743 Жыл бұрын

Will ai also affect cyber security jobs? (Can you guys also give me a detailed roadmap of getting into cyber security. I'm a civil engineering graduate trying to get into cyber security. Pls comment the roadmap from initial position to senior level. Thanks in advance)

@manhoosnick Жыл бұрын

Hey Ashfaq, did you get a response from Jeff? I can't see any. Please copy paste if you can. 🙏

@LoveYourFamily2 Жыл бұрын

If the second question is still relavant, they have a vid "Careers in cybersecurity" that might give you necessary info. Regarding the first question, my quess is that cybersecurity tasks will always need both creativity and professional "intuition", so ai will be an important tool, but it will never replace human cybersecurity specialists.

@diehardf 8 ай бұрын

The ai itself also need to be secured so I'm not sure 😂

@spiderz98 2 ай бұрын

i dont think so. yeah, maybe ai can automatize processes but (at least) humans think problems in more of a unique way, a way that machines do not. machine for coding, not for thinking, a machine wouldn't save your company if its getting nuke'd prob. on todays world ai can help you a lot but i dont think it will annihilate human SOC (even pententesters) jobs

@darylallen2485 2 ай бұрын

Lol, I thought you were gonna explain SOC - System On a Chip 😂

@haraldhwick Жыл бұрын

Haven't used a SOAR. Had Cases where T1s are doing T2/T3 and Threat hunters work load is already astounding. Yet to see how many companies do avail the bare minimum for compliance, that must be a wow. literally had occurrence where clients are knowledgeable more than the vendor support. How is burnout outlook for cyb personnel in this industry for the next 10 years? It surely is sending a fraction of people to switch to red team work and skillset, or go grey. That itself is already a risk to the industry is it not? Skill personnel shortage, out of scope work, burnout rates. Misconfigured MSP Teams... Cyber is one of those industries you'd come to love/hate.

@jeffcrume 11 ай бұрын

I say that cybersecurity is an “acquired taste” and not everyone “acquires” it. But for those who have … 😊

@manhoosnick Жыл бұрын

I'd love to start a career in CyberSec, are there any IBM certs or apprencitceship or anything that can help me ? Thanks a lot

@jeffcrume Жыл бұрын

Please see my previous response to Ashfaq Ahmed

@manhoosnick Жыл бұрын

@@jeffcrume thanks Sir

@manhoosnick Жыл бұрын

@@jeffcrume I can't find your response to his comment.

@hmm_think Жыл бұрын

Can you share your screen and show what do you really mean?

@forheuristiclifeksh7836 11 ай бұрын

3:33 Threat hunting

@najmusshaikh1310 Ай бұрын

How is he writing in reverse??

@amagagaming09 Ай бұрын

This is what I keep on wondering whenever I see his vids 😂

@xnapoolxna4890 12 күн бұрын

Write on a clear glass film from opposite side and then flip the video 180

@matelaszlo2829 6 ай бұрын

no need for having seperate levels, its old fasion. no need to have manager role. we need a tech leader with extensive cyber sec knowledge. team management is an old topic which is gone in new modern organisation.

@jeffcrume 6 ай бұрын

I think it depends on the size of the organization, level of sophistication of the personnel, complexity of the environment and countless other factors

@angelkern 5 ай бұрын

CIRT team leader should be the SOC leader and have the authority to "call" the incident and invoke the team.