- What is SOC?
A Security Operation Center (SOC) is a centralized function within an organization to continuously monitor and improve an organization’s security posture while preventing, detecting, analyzing, and responding to cybersecurity incidents. The SOC team implements the organization’s overall cybersecurity strategy and acts as the central point of collaboration in coordinated efforts to monitor, assess, and defend against cyberattacks and are entitled to the responsibility of safeguarding organization’s assets including intellectual property, personnel data, business systems, and brand integrity.
- Why SOC?
For all those who are passionate about working in cybersecurity but are not well equipped with coding knowledge? SOC is the right way to go. Security analysts are in demand. There are more job positions than qualified people. Security analysts can command a 6 figure salary.
- What is provided in the course?
- Chapter 1: Overview of course
- Chapter 2: Basics of Networking
- Chapter 3: Windows and Linux
- Chapter 4: Introduction of SIEM
- Chapter 5: Logs and analysis
- Chapter 6: Incident Detection with Security Information and Event Management (SIEM)
- Chapter 7: Enhanced incident Detection with Threat Intelligence
- Chapter 8: Incident Response
- Other added benefits
- 1 MONTH FREE ACCESS to SPLUNK tool for lab purposes
- Assistance with resume building
- Enhancement of Communication and Technical Skill
- Exclusive access to our “Interview Preparation Kit”
- The most important – “JOB ASSISTANCE”
- JOB LEVELS and ROLES
|Role (Tier Level)||Description||Skills||Responsibilities|
|Security Analyst (Tier 1)||Triage Specialist||Sysadmin skills: Linux/Windows/Mac Programming Skills: Python, Ruby, PHP, C, C#, Java, Perl, and more Security Skills||* Reviews the incident alerts and evaluate its urgency and relevancy * Create trouble ticket for alerting Tier 2 * Runs vulnerability scan and review the assessment report * Manages and configures security monitoring tools|
|Security Analyst (Tier 2)||Incident Responder||All Tier 1 skills + Experience with the ability to remain calm under pressure||* Reviews trouble ticket generated by Tier 1 analysts * Uses Threat Intelligence to identify infected/affected systems and scope of the attack * Collects data for further investigation * Remediation and determines recovery efforts|
|Expert Security Analyst (Tier 3)||Threat Hunter||All Tier 1 and 2 skills + knowledge of data visualization and penetration testing tools||* Reviews asset discovery and vulnerability assessment report * Uses advanced threat intelligence techniques to identify cyber threats which might’ve found their way into the network * Conducts pen testing to gauge resilience and finding vulnerable entry-points * Recommends ways to optimize security monitoring tools – uses threat hunting findings|
|SOC Manager (Tier 4)||Operations & Management||All Tier 1, 2 and 3 skills + strong leadership quality and communication skills||* Supervises the SOC team * Maintains and manages the entire team (recruitment and training) * Reviews incident reports and manages escalation process * Develops and executes crisis communication plan to all the stakeholders * Deals with compliance reports and supports the audit process * Evaluates SOC performance metrics and communicates with business leaders|