​Why Good SOC Analysts Know Offense & Defense

preview_player
Показать описание
If you’re a SOC analyst or managing them, it’s important to know what factors build proficiency. The first is your mindset. Many SOC analysts spend a lot of time on the system administration and log monitoring. You’ve got to understand both offense and defense at a deep level to become proficient as a SOC analyst. Both drive each other. As a blue teamer, knowing proper exploitation methods helps you hunt threat actors on a network. As a red teamer, knowing how detection engineering works helps you design attacks that are much stealthier.

The second factor for SOC analysts is to build and train on a home lab. A home lab is like a gym for SOC analysts. Gyms help athletes become faster and stronger. Home labs help you become more proficient with both offensive and defensive tools. You don’t need many resources to build a home lab. A desktop tower with enough RAM and CPU lets you virtualize operating systems or network appliances like firewalls. If you’re on a budget, a few Raspberry Pi’s and your laptop, physically wired to a cheap switch, can be enough as well.

The third factor for successful SOC analysts is constant love for learning. Whether you’re a voracious reader or binge watcher, there're resources everywhere. Blog articles, tweets, books, podcasts, YouTube, can all guide you along the learning path. In many cases, they can be more valuable than an actual cyber security course! Good SOC analysts know how to track resources to stay organized or reference back to later. Simple tools like OneNote, Google Drive, and Bookmarks can all do the trick.

The road to mastery is long. But armed with these three pieces, it’s much more attainable than you think. Level Up.

00:00 Building a Home Lab
01:30 Offensive and Defensive Toolkits
03:15 How to Keep Track of Tools & Resources
03:57 Red vs. Blue Mindsets
05:03 Are Cyber Security Certifications Valuable?
06:16 SOC Analyst Skills and Salaries
07:45 Interviewing for a Cyber Security Job
09:12 The Journey from Beginner to Pro
11:24 Tips as a Technical Leader
12:51 Security Advice for Your Mother

#SOCAnalyst #CyberSecurity #Cyberspatial
  1. Cyberspatial
  2. soc analyst
  3. soc
  4. security operations center
  5. cyber security
  6. cybersecurity
Рекомендации по теме
​Why Good SOC 0:13:58

​Why Good SOC Analysts Know Offense & Defense

A Day in 0:00:16

A Day in the Life of Cyber Security | SOC Analyst | Penetration Tester | Cyber Security Training

Top 4 Certifications 0:00:56

Top 4 Certifications to become Cyber Security Analyst

Entry-Level SOC Analyst 0:00:57

Entry-Level SOC Analyst Interview Question

A Real Day 0:06:23

A Real Day in Life of a SOC Analyst | Remote Work from Home Reality

What to do 0:08:17

What to do with a Virus Infection as a SOC Analyst | Cybersecurity Day in Life

SOC Analyst (Cybersecurity) 0:05:39

SOC Analyst (Cybersecurity) Interview Questions and Answers!

A Day in 0:00:16

A Day in the Life of a SOC Analyst | Cyber Security Training

Good Morning Monday 0:13:39

Good Morning Monday 23 12 2024 @ News Fussed from Social Media Analyst Munir Shah

My first SOC 0:00:16

My first SOC Analyst Salary

Cybersecurity SOC Analyst: 0:07:14

Cybersecurity SOC Analyst: Hands-On Training (10 Sites)

actual day in 0:03:59

actual day in the life of a SOC (cybersecurity) analyst

A Day in 0:00:55

A Day in the Life of Cyber Security | SOC Analyst | Penetration Tester | Cyber Security Training

Best SOC ANALYST 0:00:28

Best SOC ANALYST Tools - Part 1

What Does a 0:15:06

What Does a Cyber Security Analyst Do? (Land your First Job)

10 Must-Have Skills 0:16:38

10 Must-Have Skills for every SOC Analyst | Career Guide to Becoming a SOC Analyst | Rajneesh Gupta

SOC Analyst vs 0:00:58

SOC Analyst vs Cloud Security - Which cybersecurity path is best?

What is a 0:11:46

What is a Cyber Security Analyst?

Is a SOC 0:08:54

Is a SOC analyst an entry-level cyber security role? | What is Vulnerability Management?

My First Day 0:10:01

My First Day As A SOC Analyst

Which Certification you 0:00:54

Which Certification you should go for to Become a SOC Analyst?? #socanalyst

Become a SOC 0:11:34

Become a SOC Analyst for Free in 2025!

Day In The 0:09:02

Day In The Life Of A Cyber Security Analyst. It's Probably Not What You Thought, Or Is It.....

BEST SOC Analyst 0:00:35

BEST SOC Analyst Tools - Part Two

Комментарии
Автор

This has been a great, realistic and professional interview that i can finally agree on. Not many talk the way he talks, i consider this a highly-recommended video to send to those who need to know this.

kernshell
Автор

Definitely a good choice to pull this particular part of the interview out as its own video. Great overview of...well, all the things for how to get into this. Reminds me that I really need to OSINT the crap out of myself some time. ... I'll probably scare myself to the point of a heart attack. XD

For note-taking, I'm a huge fan of plaintext. I know it's not for everyone, but Vimwiki lets me give order to and navigate around a ton of markdown documents easily. It's definitely not for everyone though; vim has a learning cliff, not curve. But, with plaintext I can modify it however I want, search however I want, do all sorts of crazy things with tools like pandoc and more. It's liberating.

liesdamnlies
Автор

I use OPNsense and KVM/QEMU. I use it myself and it's AWESOME!
I use KVM/QEMU on my ProxMox server and on my Main Gaming PC for virtualizing Windows for playing Genshin Impact.
And OPNsense is just aweomse. Network Security at its finest :D

Berkshire-Hathaway
Автор

Good video @cyberspatial. Thank you for making this one and looking for more offsec and defense tools videos and more good stuff. :)

Cybermonky
Автор

I'm happy to have guys say the same things as me about certification ahah.

Totototo-nrdh
Автор

Wahouu great content! I'm speechless.

emaneezechiel
Автор

Would you film a video about how to start learning pentesting from scratch? And what are the best resources websites, books, apps....?

boushrasmart
Автор

Great interview, really helpful! I've noticed in the other interviews on your channel, including this one, the experts using Google. In the video with Chris M. he even recommended Gmail, doesn't it using Google kinda go against the beliefs of Cyber Security in general. I physically cannot use Google, all the ads, and the links of companies that paid more coming first instead of the better results, after I saw how much information they have collected about me just on a single search, I gave up. A video on this topic would be great, if you think it won't affect the channel, because you know Youtube = Google :D Best Regards

zenmoto
Автор

As a SOC Analysts you u use Facebook? And If we use should delete It?

Beowulf-zjqw
Автор

If you care about security you are using OPNsense instead of Pfsense.

Totototo-nrdh