SOC 101: Real-time Incident Response Walkthrough

preview_player
Показать описание
Interested to see exactly how security operations center (SOC) teams use SIEMs to kick off deeply technical incident response (IR) processes? To some, it might seem daunting watching IR folks do memory and network forensics; how do they know where to look and what to look for if there are 100,000 devices on the network? On this in-depth demo, cybersecurity consultant and InfoSec skills author, Keatron Evans, looks at how the process works and why a good SIEM solution is no longer a 'nice to have' but an absolute requirement for any organization's cyber threat intelligence.

LEARN MORE:

GET A DEMO:

ABOUT EXABEAM:

CONNECT WITH US:
  1. Exabeam
  2. incident response
  3. threat hunting
  4. digital forensics
  5. cyber threat intelligence
  6. dfir
Рекомендации по теме
SOC 101: Real-time 0:12:30

SOC 101: Real-time Incident Response Walkthrough

What to do 0:08:17

What to do with a Virus Infection as a SOC Analyst | Cybersecurity Day in Life

Cyber Security Incident 0:25:55

Cyber Security Incident Response - How SOC Responds, See LIVE

Soc Training - 0:51:14

Soc Training - incident response

Security Operations Center 0:05:47

Security Operations Center (SOC) Explained

Cybersecurity Expert Demonstrates 0:03:27

Cybersecurity Expert Demonstrates How Hackers Easily Gain Access To Sensitive Information

My first SOC 0:00:16

My first SOC Analyst Salary

Cyber Security Operations 0:14:43

Cyber Security Operations and Incident Response Course - Part 1: SOC Intro

SOC L1 | 1:30:33

SOC L1 | TheHive Project - Incident Response Platform | Recommended Learning | TryHackMe

SOC Incident Response 0:54:48

SOC Incident Response and Use of Ticketing tools |SOC Monthly Report

Scenario Based SOC 0:25:52

Scenario Based SOC Analyst Interview Questions and Answers | Part 1 | Security Analysts | SOC| Cyber

SOC Analyst (Cybersecurity) 0:22:08

SOC Analyst (Cybersecurity) Interview Questions and Answers - SOC Processes

Incident Response Lifecycle 0:18:53

Incident Response Lifecycle | IR Plan | NIST SP 800-61 Security Incident Handling| Cybersecurity

Cyber Security - 0:22:22

Cyber Security - Real time threat analysis, visualisation and incident response

Mastering Phishing Email 1:56:30

Mastering Phishing Email Analysis: Incident Response

A Day in 0:00:16

A Day in the Life of a SOC Analyst | Cyber Security Training

Cyber Incident Response 0:44:44

Cyber Incident Response with Splunk | TryHackMe Incident Handling with Splunk

CertMike Explains Incident 0:11:54

CertMike Explains Incident Response Process

actual day in 0:03:59

actual day in the life of a SOC (cybersecurity) analyst

4 Rules for 0:00:10

4 Rules for Cyber Incident Response - Truth Bomb Version

Security Operations Center 2:12:48

Security Operations Center (SOC) | Free Bootcamp on SOC 101 with Bharat Mutha | InfosecTrain

Incident Response Containment 0:00:59

Incident Response Containment for EC2 Instance

The first thing 0:00:49

The first thing to ask in an incident response case.

Scenario Based SOC 0:23:12

Scenario Based SOC Analyst Interview Questions and Answer| Part 2| how to handle brute force attack?

Комментарии
Автор

Been an Ent Architect for 25+ yrs and that’s the best clearest, most concise explanation of determining how best to find hidden processes on computers. Thanks.

rmcgraw
Автор

I felt this 12 minutes like 5 minutes. That's when you can tell it's a good video. Entertaining, informative and educational.

laureanocavallo
Автор

As a new soc analyst, I found this video very valuable! I got so much insight in such a short amount of time as well as how you should investigate and look into activities. Thanks a ton!

sielecassharpe
Автор

Finally, a real look into the trenches of SOC and IR.
Please keep up a good work!

xrZt
Автор

This is great. It is rare to find such a good walkthrough on this stuff. Thanks!

MereAYT
Автор

This was an amazing video! I recently got a job as a IR team member after a few years of being a network analyst. Although I have the foundations, I am very new to the job itself so this type of video helps me so much! I will definitely be subscribing!

FracturesHD
Автор

Why does this only have 1.5k views?

Great walkthrough sir.

nicksmith
Автор

I'm trying to get a job as a SOC Analyst Tier 1. I was told that Exabeam was used in addition to Splunk. I am grateful for these videos as they really give a good demonstration and let the viewer see how this works. The dashboard looks great and user friendly, and the ability to move from the dashboard to investigating the alert is a nice thing to see.

johnpiernicky
Автор

Dang Keatron you break it down like this was a sermon !! This is awesome

draperw
Автор

Thanks for the great behind the scenes look into SIEM monitoring. It's sad that I have a degree from a technical college, and there were hardly any labs, just all theory. I naturally have an investigative mindset so this really intrigues me and I would love to get back into training. Keatron, where does one start?

libnatty
Автор

Exactly the kind of content I needed!! Thanks a billion

WilliamSalisbury
Автор

Thank you for sharing. I have been trying to get an entry-level job as a SOC, and 😐it's an exciting role.

tinatwintinny
Автор

I’m only 4:18 in and I must say this is an excellent video.

miloboy
Автор

Good content! I look forward to part 2.

dgmckenzie
Автор

A+ material. i will be ready for my upcoming table top exercise. Thanks a bundle!

threadripper
Автор

Whew would recommend this video to anyone! Thank you for a value add!

daslynhug
Автор

This was excellent: short, informative, and clear. Thank you!

xCheddarBbx
Автор

Hi, thanks for the video. Although you mentioned it, using the md5 command is a lot better and quicker as it gives you the instant hash which you can copy and paste into VT.

_amintrouble
Автор

just getting in and this was fun to watch

Foxy-bn
Автор

thanks a lot for valuable video please keep doing such a videos very informative. thanks again.

KishorKumar-ze