Discover Geeks Academy’s articles on: Blockchain, Coding, Cybersecurity, Cloud, Big Data, Artificial Intelligence, Gaming, Digital Innovation
Introduction
The field of Cyber Security is increasingly crucial in today's technological landscape, with cyber attacks constantly on the rise. In this interview, we will explore the story of Hassan, who after deciding to leave the Army embarked on a customized 240-hour High Professional Cybersecurity training with focus on both the "Offensive" side with Ethical Hacking and defense as a Soc Analyst managing to build a successful career in managing teams in the Security Operations Center (SOC) field. We will see how specialized training and practical skills led him to successfully manage IT infrastructure security.
Question: What is the training path you took to become an expert in SOC?
Answer: After completing a 240-hour course, I gained a solid foundation in the field of Cyber Security through modules such as Information Security and Advanced Penetration Testing. I also earned two international certifications, which helped strengthen my skills in both the offensive and defensive sides of operations.
Question: What are the responsibilities and skills required to work in a SOC?
Answer: A SOC requires a team of specialists with a variety of skills. Key figures include security analysts, pentesters, malware experts, and more. Working in a SOC is a team activity, and soft skills, such as the ability to collaborate and communicate, are just as important as technical hard skills.
Question: What is the role of Security Information and Event Management (SIEM) in the SOC?
Answer: SIEM is an essential tool in monitoring and analyzing information from devices and system logs. Through SIEM, SOC analysts can detect anomalies, collect data, and provide 360-degree visibility into the IT infrastructure, facilitating the management of security incidents.
Question: How do you address information and alert management in the SOC?
Answer: Information and alert management requires a structured process. We use PlayBooks, which are standardized procedures for incident management. These help us classify and prioritize alerts, investigate anomalies, and take corrective action in a timely manner.
Conclusions
Work in Cyber Security is fascinating and challenging, requiring constant training and the acquisition of multidisciplinary skills. A career in a SOC offers opportunities for rapid growth, with many professionals finding new challenges and career opportunities after a short period of time. Passion, dedication, and constant updating are critical to thriving in this ever-evolving field.
Check the available courses in the field of Cybersecurity