Detection Engineering Lifecycle: An Integrated Approach to Threat Detection and Response: https://detect.fyi/detection-engineering-lifecycle-an-integrated-approach-to-threat-detection-and-response-54de5bf17dba
#SecurityOperationsCenter
Why Being a Tier 1 SOC Analyst Is Practically Impossible (And What to Do About It): https://medium.com/@mathias.fuchs/why-being-a-tier-1-soc-analyst-is-practically-impossible-and-what-to-do-about-it-ce5c4b39f17d
#SecurityOperationsCenter #tier1-analyst #l1-analyst
SOC Performance Unplugged: Understanding MTTD, MTTA&A, MTTR, and more: https://underdefense.com/blog/soc-metrics/
A Brief Guide for Dealing with ‘Humanless SOC’ Idiots: https://medium.com/anton-on-security/a-brief-guide-for-dealing-with-humanless-soc-idiots-3c2f1a5b26e9
Vectra AI: leader nel MarketScape 2024 di IDC per le soluzioni di Network Detection and Response: "Le soluzioni di network detection and response hanno punti di forza tipici in quanto sfruttano l’operativita’ all’interno della rete al momento dell’ingresso/uscita...
#VectraAI #MarketScape2024 #IDC #MarkWojtasiak #SecurityOperationsCenter http://dlvr.it/TH7r86
Anton’s Alert Fatigue: The Study: https://medium.com/anton-on-security/antons-alert-fatigue-the-study-0ac0e6f5621c
Top 3 Tips to Improve Detection Rules for Efficient Detection Engineering: https://www.picussecurity.com/resource/blog/top-3-tips-to-improve-detection-rules-for-efficient-detection-engineering
Is Security Analytics the key to High-Fidelity, Context-Rich Alerts? https://detect.fyi/is-security-analytics-the-key-to-high-fidelity-context-rich-alerts-9728ca698dcc
#siem #detectionengineering #SecurityAnalytics #SecurityOperationsCenter
Pull Your SOCs Up: https://trustedsec.com/blog/pull-your-socs-up
Top SecOps challenges for SOC analysts and managers
7 Preventable Mistakes Even Top Security Teams Make: https://www.darkreading.com/cybersecurity-operations/7-preventable-mistakes-even-top-security-teams-make
Cybersecurity 2024: il futuro secondo HWG Sababa: Nel primo semestre del 2023 gli attacchi cyber andati a segno in Italia sono cresciuti del 40% rispetto allo stesso periodo dell’anno precedente. Uno scenario particolarmente negativo, gia’ emerso nel 2022, ma che trova conferma anche in questa prima meta’ dell’anno. Osservando la situazione...
#SababaSecurity #AlessioAceti #securityoperationscenter #intelligenzaartificiale #cybersecurity http://dlvr.it/T0rRk2 #News
Spotlight Podcast: RADICL Is Coming To The Rescue Of Defense SMBs - In this Spotlight Security Ledger podcast, Chris Petersen, the CEO and founder of ... https://feeds.feedblitz.com/~/836950199/0/thesecurityledger~Spotlight-Podcast-RADICL-Is-Coming-To-The-Rescue-Of-Defense-SMBs/ #endpointdetectionandresponse(edr) #securityoperationscenter(soc) #artificialintelligence #defenseindustrialbase #vulnerabilities #cybersecurity #topstories #government #spotlight #podcasts #threats #defense
!!Cybersecurity Job seekers in UK or Spain!!
There is an awesome cybersecurity role, for a mid-senior (L2/L3?) SOC analyst for a great team looking after global security in a complex environment. The role is remote but you must already be based in the UK or Spain with a right to work in that country.
You will get to work with some incredible people and for an awesome boss. The hours are good, with (currently) no expectation of shifts or objectionable hours and the pay is excellent. The organisation is committed to staff development and will give you the chance to use some cutting-edge security tools.
The ideal candidate will have a good technical background and absolutely requires experience working in a SOC. You will be expected to work without supervision and be able to move beyond existing playbooks and respond to situations where the full security stack hasn't been deployed. You will be expected to understand common attacks and know what to look for in the early stages of an intrusion. Importantly, you need to have a clear idea of when you will hit your current limits and escalate to L3/IR.
⚠ Important Note: I am not the hiring manager. You will not work for me. I do not select the candidates. I am not a JLL employee. You can only apply via the link below, so there is no point in sending me your CV as it will just make it look like you haven't read the post. ⚠
#jobs #cybersecurity #infosec #informationsecurity #soc #cyber #jobseekers #recruitment #hiring #analyst #securityoperationscentre #securityoperationscenter
Question for my #InfoSec peeps:
Does anyone use a list of known TOR exit nodes for any kind of response tools? Dynamic block list?
Threat Intel?
What do you use, and what were your motivations for choosing that specific source?
#IncidentResponse #Automation #InfoSecOperations #SecurityOperationsCenter #SOC
Black Hat Europe 2022 NOC: When planning meets execution
https://blogs.cisco.com/security/black-hat-europe-2022-noc-when-planning-meets-execution
#SecurityOperationsCenter(SOC) #cybersecurity #Security #BlackHat #security #umbrella #SecureX #meraki #Talos #NOC #SOC
The 3 Building blocks for a Security Operations Center #SOC
1-People with dedicated role in incident response or analysis.
2-Processes in incident and patch management. NIST, PCI, HIPPA and ISO27001 can help define your processes.
3-Technology tools like endpoint protection, SIEM to gather logs from network devices
How to Bring the Power of No-Code Security Automation to Your Team in 2022 - Seven in 10 SOC analysts say they are “burned out.” Six in 10 plan to leave their job “in... https://feeds.feedblitz.com/~/684526148/0/thesecurityledger~How-to-Bring-the-Power-of-NoCode-Security-Automation-to-Your-Team-in/ #securityorchestrationandautomation #securityoperationscenter(soc) #securityoperationscenter #no-codeautomation #processautomation #expertinsight #technologies #topstories
The SOC Hop Needs to be a Relic of the Past - Overworked, understaffed teams constantly jumping from one fire to the next - exhausted a... https://feeds.feedblitz.com/~/653412498/0/thesecurityledger~The-SOC-Hop-Needs-to-be-a-Relic-of-the-Past/ #securityoperationscenter(soc) #securityoperationscenter #thoughtleadership #cybersecurity #stellarcyber #contributed #topstories #companies #stellarai #business #opinion #reports #soc
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst