Overview
This course aims to help cybersecurity professionals enhance their security operations by providing actionable strategies for building and adjusting detection and response capabilities. The course covers topics such as understanding priorities in a dynamic operational environment, hiring and nurturing talent, leveraging threat intelligence, selecting the right data, and utilizing tools to support analyst workflow. The teaching method includes a strategic roadmap presented through 11 key strategies. The course is intended for cybersecurity professionals working in security operations centers (SOCs) who are looking to elevate their security operations game.
Syllabus
Intro
SOCS Operate in a Shifting Landscape
The 11 Strategies
Know What You are Protecting and Why
Balance Size with Agility and Visibility
Hire Well & Encourage Growth
Illuminate Adversaries with Threat Intelligence
Anticipating Adversaries
Select and Collect the Right Data
Leverage Tools to Support Analyst Workflow
Balancing Sharing & Protection
Conclusion & Questions
Taught by
Black Hat