actual day in the life of a SOC (cybersecurity) analyst

Подписаться 82 тыс.

Просмотров 121 тыс.

50% 1

Ever wondered how SOC (cybersecurity) Analysts REALLY work from home? Are they living up to the expectation? Well... Let's find out!
Cybersecurity Certification Study Resources
CISSP Study Guide - amzn.to/3LmjOLM
CISSP Practice Tests - amzn.to/3oreDRO
Security+ Study Guide - amzn.to/3mTGPwg
A+ Study Guide - amzn.to/3KWS27n
Check Out My Setup
Gaming Chair - amzn.to/3V0nAhg
Monitors - amzn.to/3L1DVgT
Mouse - amzn.to/3H6A5Su
Keyboard - amzn.to/3mNXLVa
Microphone - amzn.to/40BQPId
Camera - amzn.to/41BqwmX
Disclaimer: Some links are affiliate links.
a day in the life of a cyber security analyst
what do cyber security analysts do
what do cyber security analysts do on a daily basis
what does a soc analyst do on a daily basis
typical day for a cyber security analyst
what do soc analysts do on a daily basis
Welcome to Mad Hat. I'm a Cyber Security Analyst at an undisclosed Fortune 500 company. Here, we talk about tips and tricks on how to land a successful career in tech. If you are interested, make sure to hit that subscribe button!
Filmed with an old dell laptop
MAD HAT
Cyber Security Professional - All Things Tech
#DayInTheLife #CyberSecurityAnalyst #SOCAnalyst
#IncidentResponse #WorkFromHome #madhat

Наука

Опубликовано:

14 ноя 2022

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 244

@madhatistaken Год назад

If you'd like to see what the worst day in the life is like, please consider checking out my follow up video: ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-PxJmjPcEaOM.html You may or may not be pleasantly disappointed 😅

@CatJ45674 Год назад

You have no idea how thankful and fortunate I am that you made this video. You are amazing! You explained everything so well and still gave an idea what is involved on a day to day basis without showing any private information. I am in the process of trying to do what you are doing and this was so helpful! Please make more videos like this! Thanks again! 🙏

@madhatistaken Год назад

Thank you so much! I'm glad to hear it helped! 😊 I'll definitely be doing another video with a break down of a malicious incident/alert. Maybe a few more using different tools in the environment 🤔

@SupportSquirrel Год назад

As a Security Analyst on Incident Response I can say we also do a lot of this on our lower tiers with Alert Monitoring. Though the tools may differ, the processes for finding and reviewing evidence and the thought processes and methods behind it don't change. It gets much easier with experience :)

@madhatistaken Год назад

That's good to hear the skills are transferable if someone wanted to move positions! Thank you for watching!

@NorthernDownpourss Год назад

Thank you for the information and insight as a SOC analyst. Not boring at all and I 100% agree that it's much better than dealing with end users in helpdesk/service desk jobs. I got my first experience in helpdesk to get my foot in the door in IT/Tech and god it is soul sucking. It's like being butterbot from rick and morty. "What is my purpose?" "You reset passwords." "oh god.." lol

@madhatistaken Год назад

I love that analogy 🤣, a part of my soul remains with the MSP I worked at for a year...😅

@Disclozure 11 месяцев назад

Exactly how I currently feel, coming close to 2 Years now, I really don't feel like I have it in me anymore :/

@LIVdaBrand 3 месяца назад

This is VERY true. it really is soul sucking--and not in a good way lol

@tonya.1786 3 месяца назад

I have a disability that prevents me from crawling under desks and lifting installing equipment so desktop support is out and you are right helpdesk is soul sucking. I worked as an analyst supporting a system and they were constantly pushing updates that broke it or changed UI and I would have to address tickets that basically said, change it back. uh no thank you. CS is definitelt the way to go and SOC is one career path to get foot in the door.

@user-cp7qt9bs9v 2 месяца назад

God... you couldn't have worded better; hell desk is SOUL SUCKING.

@daneeee8682 Год назад

One of the few accurate day in the life soc work. sweet and concise. Good job!

@Sympken 9 месяцев назад

I just wanna say that you have officially made me decide that cyber security is what I want to do. I love the investigative work involved and you can easily tell how you break it down in a certain pathway. I can’t thank you enough brother, definitely a sub from me!

@Themoralofthestory. 11 месяцев назад

This is actually really helpful, it gives me the confidence to keep going for a SOC position as alot of what you described i know how to do. Thank you.

@sam-sw8zw Год назад

as a mid level support engineer this is awesome. I feel like this is an accurate summation of your job. thanks for sharing.

@mattjackson7445 10 месяцев назад

This is a beautifully succinct example of dealing with a real-word incident. Wish more creators were this efficient with information.

@Atned Год назад

Graduating soon out of school for cybersecurity, and it's good to know that a lot of what we were taught is going to be used exactly the way we were taught. Great information on the day-to-day stuff, it really puts my mind at ease! I really hope the job is as chill as you describe it because my current job is stressful enough as it is lol

@lingevolved6959 7 месяцев назад

what u do on your current job?

@synos0202 Год назад

Love the wow details addons while answering a thicket. My man.

@amgriff18 7 месяцев назад

Dude this is GOLDEN!!!! You will have a million subscribers in no time if you keep this up. Much love ❤

@_Saint_gaming Год назад

First time watching your vid and I’ve subscribed due to how easy you make things sound! Keep up the good work bro! Your great !❤️

@gabrielarchie2944 Год назад

Thank you, really cleared everthing up nicely for such a short video as what to expect as I begin my career.

@seclilc Год назад

I was a pentester for a year and I feel like this type of day to day may be more up my speed. Thank you for sharing your perspective

@madhatistaken Год назад

Join the blue team! 😅 If you've pentested I'm sure you know more than me!

@cryptomarkla2051 Год назад

I finally found a video that explains what is really done as a cybersecurity specialist. Thank you!

@yajkuzagaming Год назад

Awesome video. Definitely gave me a good insight on what to expect.

@ToomuchTC 8 месяцев назад

Great video man , really gave me a insight

@faisalkhan5410 11 месяцев назад

appreciate your efforts man,thanks for the information

@UndeadBed Год назад

thanks for doing this, really appreciate this no-frills format

@madhatistaken Год назад

Thank you for watching! Some of my other videos might have frills though 😅

@UndeadBed Год назад

@@madhatistaken haha so I've found out, my kinda frills tho 👌🏽

@carbon_root Год назад

I appreciate you showing us this, as I'm also getting into cyber security and all that😖 what right seems to me overwhelming at the moment... You got a sub from me so please continue making more awesome educating videos🤙and again thank you.

@madhatistaken Год назад

Thank you for watching!! I'll keep trying to make helpful videos as I learn new things, gotta keep learning in this field!

@ruslanbedoev9264 5 месяцев назад

Always on point and very informative.. Matrix rules 🤛💎💎

@temhirtleague-chess 9 месяцев назад

Thanks. This clarifies a lot.

@melaronvalkorith1301 8 месяцев назад

This is awesome. There is lots of talk out there about what SOC analysts do that are not exactly enlightening - including an article that made it seem like you need an IQ of 150 you do the job… This was very realistic. Thank you!

@allmightfan Год назад

I just got into school for comptia and security+ thanks for clearing my head I’m more motivated to study now ❤

@aion6151 17 дней назад

Was that WoW when you were writing your notes on the situation? 😂 good video

@rrb7048 7 месяцев назад

One of the best day in the life videos I’ve ever seen. And I didn’t even hear about when you had coffee or what you had for lunch 🤣

@OMG.IM.CODING 8 месяцев назад

This video was posted 11 months ago and I can't thank you enough for it! I'm making a complete career change but only because I can finally have the flexibility (time), to put in the effort! I've been challenged with making the choice of which pathway in Cybersecurity to take and you have made SOC fun to watch and motivating for me to pursue!!!! THANK YOU SO MUCH! Do you have any videos to show the pathways to getting into, and becoming a SOC Analyst? #sothankful

@yuvalavrum9354 Год назад

I’m in school right now for cyber security, and this was *really* helpful, thank you!

@madhatistaken Год назад

Thank you!! 🙂 Make sure you double down in school on the field within cyber security you want to do. I didn't and kind of just studied to pass my classes 😅 I'm glad to hear it helped!!

@juice8431 Год назад

Why did you take cyber sec instead of CS? Isnt CS a better degree?

@madhatistaken Год назад

@@juice8431 CS is entirely coding, which is fine is you like doing nothing but coding 😅 I switched to cyber sec after taking a few specific cs classes and realizing I didn't want to be coding all day and after seeing the field gets good pay as well. I wouldn't say CS is better, it's...different?

@juice8431 Год назад

@@madhatistaken I thought you could get into cyber sec with a traditional CS degree. But I guess it makes sense if you want really focus on that one particular field of profession

@lil_syba 11 месяцев назад

commenting for the algo, but also this was really insightful for me. i'm on week 3 of the coursera/google course and trying to absorb as much cyber security content as i can. cheers

@cahz7540 Год назад

More examples this is amazing. I'm starting my first soc analyst position and I love this

@madhatistaken Год назад

Thank you for watching! I have an endless supply of examples 😅 So definitely can release more in depth breakdowns. Maybe a malicious alert next time...

@cahz7540 Год назад

@@madhatistaken sounds fantastic

@gamin4jesus Год назад

This video was super helpful, thank you!!!!

@madhatistaken Год назад

Glad it was helpful! Thank you for watching 💚

@larhondah.2793 2 месяца назад

Thanks for this video! I plan to go to school for cyber security in August!!🎉🎉🎉

@bradleywelch5345 Год назад

@3:08 Check out that rogue dps! lol. Thanks for this video.

@thusnoname8193 Год назад

Love this! Currently in school for IT and networking but planning on getting my base certs soon as well. Great breakdown!

@jonitalia5596 Год назад

Go to WGU. You get certs and a degree. I already have two and I am two months in lol.

@madhatistaken Год назад

Glad to hear some part was helpful! Keep studying!

@christisking1095 6 месяцев назад

Just wanna say.... i seen WoW in the background whilst typing away on your keyboard. Well played. 😆

@TheBeach5563 11 месяцев назад

Thanks so much for sharing. I work as network adming but want to dive into this stuff. Hopefully be able to work remotely with it one day.

@rokkr 8 месяцев назад

Checking on your channel and videos, amazing to the point content. You are really helping me to make a decision on what to focus my career on. Btw, do you play WOW as a daily basis for the SOC as well? My Horde characters need some love haha

@madhatistaken 8 месяцев назад

Glad to hear some of it's helpful! I used to play at the beginning of the xpac, but as is the usual for the last few xpacs I quit 1 or 2 seasons in lol

@gjije Год назад

Interesting video !! Nice dps with your warrior ;)

@madhatistaken Год назад

Thank you!! I'm mediocre at best as warrior, but much like cybersecurity, it's a long time commitment 😅

@tom-zl4qj Год назад

my mans playing fury warrior while writing his ticket. What a g.

@RaulTheMessenger Год назад

This is part of my job as a cybersecurity analyst Very cool knowing I’m not the onlybone

@liyah2ify 14 дней назад

So informative ! I'm in my late 20s basically lol and Im going back to college to maybe in cyber security this fall ! Wish me luck

@jamesb7792 Год назад

Saw you were playing WoW. Good man

@mike_t_007 6 месяцев назад

Start my new SOC Analyst job next month! This was helpful. You have a new sub👍🏾

@IfeoluwaTalabi 3 месяца назад

Hi I’m hoping I could connect with you. I would be graduating in May and also want a career in SOC analysis.

@cru3lladevi11e Год назад

SAMEEE. this is a perfect example of a level 1 analyst!!!!

@TrueKeyMan Год назад

This video is awesome! Thanks for a glimpse into what a SOC analyst does!

@madhatistaken Год назад

Thank you for watching! 💚

@MrFiendyBob Год назад

I am a SOC analyst myself, I find in doing many alerts, you can kinda feel if it’s malicious or not from the beginning of just the details provided. Ofcourse you have to do more research to make sure you are correct. Also malware analysis is fun to do if you have free time!

@madhatistaken Год назад

Sometimes, I find myself finding nothing and getting mad because I have a feeling something is malicious, and I just can't find the smoking gun. Nerve racking job sometimes 😅

@ItsOnlyLogixal 11 месяцев назад

Completely agree with this. You can clear alerts much quicker once you've seen them 100s of times before. The most annoying thing is having to close them over and over while you get rule changes approved.

@a.c.a.r.v.a Год назад

Thanks for the video, this was great! I'm looking into getting training in the field and am a little flustered on where to go/what's trusted. Do you have any advice on this? Thank you in advance! Keep the solid vids going ✌🏼😁

@madhatistaken Год назад

There's tons of free resources online for self learning TryHackMe, HackTheBox, BlueTeamsLabs, Cybrary, etc. Depending on how much IT knowledge you already have, you can also self study for certifications like Security+, CEH, or if you're really aiming high the CISSP. You can find extensive youtube video courses for studying for those certs. I've heard of people landing Security Analyst roles with just the Security+ which imo is the easiest one. It can be overwhelming with all the options available but I don't think you necessarily need to pay for courses or bootcamps, although paying for bootcamps might give you incentive to study harder 😅. I've heard mixed things about WGU cybersecurity bachelor's program, but I've also seen success stories from it. I might make a video with a better explanation of where to go to get started. 🤔

@a.c.a.r.v.a Год назад

@@madhatistaken Thank you plenty for the direction! I really appreciate the info 🙏🏼😁 I'll take a look into the free assets and go from there (I agree that you don't always have to pay for these things, especially in our generation--benefits either way though). But if you get the chance, it's definitely a good idea to do a vid about it sometime--there's a need for transparency in places that can be easy to get lost in.

@Nemesjs Год назад

@@madhatistaken a video with a better explanation and more detail would be greatly appreciated sir. Currently a cybersecurity student at a college and realizing that I need a lot of self learning and have been going through TryHackMe! anything cybersecurity would be greatly appreciated!

@madhatistaken Год назад

@@Nemesjs I'll definitely be making a better comprehensive guide for breaking into the field. You've got a leg up on many working on that cybersecurity degree 😃 Make sure you take FULL advantage of any internships the college may offer. Two of my classmates ended up getting hired full time in their internships at pretty big companies right after graduating in 2020.

@Nemesjs Год назад

@@madhatistaken that's awesome for them! sadly there is no intern/co op for my program since it's a 1yr cert I guess that's given me a good foundational knowledge so far, wouldve really loved a co/op intern opportunity though. However tryhackme and RU-vid courses have been helping me understand way more. appreciate ur vids!

@dil173 Год назад

you have no idea this video just fit nice in time for me to take a bigger role in IT, i am sick of L1 desktop engineer job now...

@ASH_8111 Год назад

Thanks for the amazing insights! Could you please recommend some basic certs and where I should start as a complete beginner in SOC?

@madhatistaken Год назад

The CompTIA certs A+, Network+, Security+ are decent starting points. You'll hear conflicting things on them. Some people say CCNA is better than Network+. Some people say A+ is useless, but I say they're all more helpful learning and having than not having them. There's also a blue team specific cert CompTIA CySA+. You don't have to take all the certs in any order. But they do build off one another, so it depends on one's ability to learn the concepts.

@jaredhansen6431 Год назад

Hey man love the content but what SIEM tools did we need to know for SOC analyst and instead of the SIEM tools now is learning Maltego better since it's better utility

@madhatistaken Год назад

Thank you for watching! 🙂I think you can learn any siem tool to get a general understanding of how they work and how to read through logs. Splunk is very popular and their formatting for queries is used in a few other products you might encounter in the field. I'd say learning SIEM is still very much necessary because even if there is a better new solution, it has to be setup and adjusted which takes time, money, and it's tough to justify the cost to the "heads" of a company. In other words, SIEM is still going to be around for a good while before new and better tools get put in, so learn both? We're always learning 😅

@joeleal7250 2 месяца назад

I’m assuming that you still play wow (vid is a year old now, but nobody ever really stops playing wow). I also see that you play arms in 3s. Would you be interested in picking up an additional dps? It would be fun!

@venkatvv4900 7 месяцев назад

For soc analysts i want to know what scripting or programming languages need to learn ? do you work on any cloud tools like aws ? if i have hands on knowledge tools like ArcSight and splunk without certifications can i get into soc roles?

@alecrides898 Год назад

I saw the Wow running on the other monitor… great video, as a SOC analyst I can concur this is 100% accurate

@madhatistaken Год назад

That was a good catch 😅 it was barely on the screen. Thanks for watching fellow gamer analyst ❤

@lucassaftig5062 10 месяцев назад

Hey Mad Hat, what are real problems you and your L2 and L3 Analyst face in your day to day work? Is it that you need to jump across several tools for a precise investigation? Is it that you need to investigate into to many false positive? What keeps you and your colleagues really up at night?

@ScreamGeronimo Год назад

Thanks for sharing this! Can you say how long it took you to confidently discern what is normal activity per user/department? Or is that an ever-evolving and always moving target?

@madhatistaken Год назад

My confidence level is usually determined by how much proof I can dig up to support my determination. I've often brought in other analysts to take a second look when I wasn't able to find enough to be certain enough to decide. My confidence is definitely a work in progress and as you said will probably be ever-evolving, especially given I'm fairly new to the position and tools still. Normal behavior per user is also just one facet of the investigation, as a lot of times I have no clue why a user in a certain department is for example installing some random plug in tool. I see the expected behavior as a first step to determine how serious something could be as I start the investigation, so if there's a receptionist installing a program that does nothing related to scheduling and is way off base like Visual Studio Code then I know I'm in for a potentially compromised computer early on. I hope that makes sense 😅

@MatthewMarcus 10 месяцев назад

Great video @madhatistaken! Might I ask what education path you took to becoming a SOC Analyst? I was considering getting the Google Cybersecurity Certificate from Coursera, but curious if this will be enough to land an entry-level job in the cybersecurity space. Thanks in advance for any insight / guidance / answers you can provide!

@madhatistaken 10 месяцев назад

I went the college route then worked at a MSSP before landing my current security job. Google cyber course is a good start, but most likely will not be enough if you have no other experience/certs/education/projects to show for on your resume. There's jobs that are VERY entry level, they're just hard to find. While you apply to entry level roles, just work towards more stuff to put on your resume until you finally get that first security job.

@LuckyOctober 11 месяцев назад

Bro you really hit home with that call karen stuff. I graduated in Networking Engineering and I got a job 10 years ago as tech support. Literally the worst job in human existence.

@sean8190 8 месяцев назад

Just wanted to say i got a "final onsite interview" for entry level analyst tomorrow. Thanks for the video.

@madhatistaken 8 месяцев назад

That's awesome!! Best of luck, you've got this! 😁

@Lightgrenadez7777 9 месяцев назад

Dude thank you. as some one who is looking to get into CS. Thank you. I'm so sick of this day in the life videos and articles. I wake up and out 8 bananas my smoothie. Then at 820 I do yoga. Fuck off. Like this is the first video I've found. We're I'm like finally some describes the actual fucking work. Now I know it's something I want to looking further. Thank you so much for actual information.

@Anonymous-xq3cd Год назад

Im also a soc analyst for an MSSP and that is basically how my job goes too!

@madhatistaken Год назад

#blueteamrocks 😅

@johnflorence2672 9 месяцев назад

experience is king, just have to manage how to get in

@illumnai6471 Год назад

Nobody’s gonna comment on you playing a warrior in WoW? I love this job already

@madhatistaken Год назад

Warrior main since Wotlk 😅

@SirKrazzy Год назад

I can say as a cybersecurity professional in soc, working from home, my world of warcraft is also opened.

@madhatistaken Год назад

For the horde? 😅 Ironic I'd be red

@Chickin Год назад

Nice

@christophergrimes6710 5 месяцев назад

I am really late but if I graduate with a batchelors in cybercriminology and security studies and a minor in forensic data, is this a job that will be easy to apply for?

@Michael-er8dh Год назад

I'm a NOC engineer and this is same from what I do in my work but focus on network side

@madhatistaken Год назад

We're living the dream fellow analyst ❤

@bluesquare23 Год назад

I'm a SOCK engineer (I mostly work on the tube design, but have been known to help out on the gold-toe team from time to time). I just wanted to say I'm glad we all have totally real titles that are indicative of what we actually do / our capabilities and are not just vague meaningless descriptions made to stroke our fragile egos!

@Trick_E_Lemonz Год назад

Love it ❤❤ keep making great content

@madhatistaken Год назад

Thank you so much! I'll try to make improvements to videos as I learn to make them engaging 😁

@Trick_E_Lemonz Год назад

@@madhatistaken you are doing a great job so far! Keep it up!!

@ezeadnahc Год назад

I enjoyed this

@madhatistaken Год назад

Thank you for watching!! ❤

@Frozlie1 Год назад

yup accurate

@minineji7050 Год назад

Great video this is useful information

@madhatistaken Год назад

Thank you!! I'm trying to make helpful stuff 😅

@minineji7050 Год назад

@@madhatistaken def is helpful, just completed a CS degree but this is more what I wanna do so your channel's been giving me lots of good info about what I need to look into and such lol

@madhatistaken Год назад

@@minineji7050 Congratz on the CS degree, you completed what I gave up on 😅 Cybersecurity is just a few extra top level concepts on top of coding, so you'll land a security position in no time with your degree!

@shaunparton1209 Год назад

Funny, I also have wow and xsoar up when "working from home" haha

@ethaniel432 Месяц назад

How do u even get the expeieence to do this ?

@beybladeofanothermot Год назад

Thank you for everybody to allowed this to get in my algorithm 🤣😤I’m very excited to become one soon

@Woobel Год назад

well done mate. same here i do the same and well said better then a karen :D its fun specialy when TI, TH, IR and malware comes in.

@madhatistaken Год назад

Thank you!! The high alerts make me panic, but I'll come to find more enjoyment as I learn how to handle them better :P

@Bradley.1337 Год назад

Help desk to Cyber securiry analyst in 10 months at my company.

@AslamAli-bz3zh Год назад

you are more explaining about crowd strike than the SOC analyst

@traderH 10 месяцев назад

may i ask what are the salary ranges for that kind of job ?

@ayushbansal6808 Год назад

Can you tell at what SLA you maintain and how strict is it?

@madhatistaken Год назад

Our SLAs vary by incident severity. I believe highs are max 4 hours, mediums are 24 hours and lows are 48 hours. The strictness is almost like a good faith effort it seems. The security team is not a 3rd party company but a part of the company so we're not fighting to compete with company contracts like my last job with a MSP. So, if something comes in and has some serious red flags, it's an all hands on deck situation where everyone is brought in to figure it out. The strictness of the sla's haven't been an issue while I've been here probably because I started when security tools and automation were setup to allow alot of freedom to learn and innovate. I'm spoiled 😅

@peter_mitch1880 Год назад

I'm in Service Desk role right now and freaking hate it to the core . Hate calling Karens reminding them regarding Windows Security patching every week . Planning to take CEH and jump into Cybersecurity since I have just completed my Diploma in IT this year

@madhatistaken Год назад

Good luck on the CEH! Get out of service desk as fast as you can before you takes more of your soul 😅

@peter_mitch1880 Год назад

@@madhatistaken unfortunately I got no more soul left.

@GhamBrainsuiru Год назад

Can anyone link me up with someone who can teach me SOC from scratch to finish? Ready to proceed how he or she wants . Thanks

@chisaladominique2622 Год назад

Kindly do a video on how to startup in cybersecurity on the forensics end🙏🏽🙏🏽

@madhatistaken Год назад

I can add to the list of video ideas 😅 Thank you for the request and for watching!! ❤

@boomson3082 Год назад

Good video. Not sure if you intended it or if the email is not a legitimate email but at 3:06 you can see an email address that references a real business. If it isn’t a true email ignore me. Also, good to see you are a WOW player too and a warrior at that :)

@madhatistaken Год назад

Nice catch! Those are just lists of potential indicators of compromise, could very well be legit 😅 Playing a warrior since 2010 lol

@fromthemoonandmybed Год назад

Hi mad hat, I’m currently in college getting a bachelors degree. I was wondering do you think becoming a soc analyst is a good entry level job? I don’t have work experience at all in cyber sec, so I’m just trying to find advice from someone whose around my age and has landed a job. Really appreciate this video btw I’ve been wondering what the heck the job “looks” like not “described” in wording. No videos on RU-vid show such a thing except yours and one other one. 😢🙌

@emilyau8023 11 месяцев назад

Cyber isn't entry level friendly unless you have connections.

@JordanRobertEnwright 11 месяцев назад

I have an interview for a SOC analyst job coming up any tips?

@7ripachikita Год назад

Do hacking certifications can help get into a soc position or certificates like sec+ cysa+ and cissp help more since they are blue team based?

@madhatistaken Год назад

Hacking certs will set you apart if you have other blue team based certs, but if all you have is hacking vs someone coming in with all blue team then it's considerably more difficult to get into that first interview I'm sure. Hacking certs provide training into subject matter that relates to blue team concepts, understanding how hackers work is integral in our job and investigations so it can only help, but you should still pursue blue team certs if that's the job you're going after. Hacking certs are red team but overlap with blue team concepts and vice versa. A good red teamer can blue team and vice versa. Sooo, learn everything you can!😅

@7ripachikita Год назад

@@madhatistaken thank you very much , at the end of the day just learn as much as u can which makes sense for the field! When it comes to Networking skills what level do we have to be to be considered great aswell? Is network+ enough or ccna? Just wondering since networking is key in the internet Thank you very much answering my question, i really appreciate it!

@madhatistaken Год назад

@@7ripachikita I've heard conflicting opinions, but CCNA teaches a little bit more configuration information that could prove useful in a cyber career, however imo Network+ should be more than enough to get your foot in the door. You have to know IPv6, IPv6, mac address, routing protocols, etc. because as you said that's the internet and how bad actors infiltrate systems. So constantly learning more about networking is going to make you a better security professional because you'll understand potential vulnerabilities better on a network and where to look for potential breaches or worst how someone was able to get in. I guess it's difficult to gauge what level someone is "great" at networking because you can be a cisco professional and know loads about configuration on a cisco device but that doesn't mean they're better at networking than say a seasoned penetration tester who wouldn't be able to configure or troubleshoot a cisco device because they didn't memorize how they work. I hope that's not confusing and helps some 😅

@7ripachikita Год назад

@@madhatistaken its crystal clear , thanks for all this gold info , last question, any books u recommend for networking and cyber security ?? Study guide or not i would really appreciate it! Or even videos on YT/ITProTv/Udemy? Thanks for all you do!

@jayk5049 Год назад

Hahaha, WoW in the background.

@madhatistaken Год назад

New xpack, I couldn't resist the nostalgia boost!

@yellow4034 Год назад

Where do these "alerts" come from? SIEM or another platform?

@madhatistaken Год назад

We have many security software tools (SIEM, EDR, Email filter, etc) in place that generate detections or incidents in their interface that then get sent to our main ticketing software that we work off of. We then pivot to any tool needed in the environment to investigate the alert or incident. Hope that clarifies the process a bit 😅

@Sabrevicious Год назад

First one sounds like Crowdstrike Falcon, yep

@madhatistaken Год назад

I'll be reciting falcon alert format in my sleep in no time 😅

@emmanuelruiz5284 Год назад

Hi, do you get paid while doing training stuff or Is it a little less money?

@madhatistaken Год назад

We get paid the same hourly for training as working on alerts. I was fortunate enough to find a position that's investing in their employees and providing resources to learn different aspects of security.

@impapiblitz4325 6 месяцев назад

can u say your journey on getting this job ?

@VictorSIlva-om3in Год назад

hey thanks for the content… any chance do you post a roadmap to be a good soc analyst ?

@madhatistaken Год назад

Thank you for watching! I could put together a roadmap that outlines soc analyst skills needed for sure. Maybe something for people who've already done the basics but need to harden their knowledge and terminology on incident response 🤔

@wuuubbits Год назад

How many tools for pen testing are tools made by your team?

@madhatistaken Год назад

I'm not a part of the red team in the company, but I'm fairly certain we don't have qualified enough people yet to make our own tools/code for testing. We recently outsourced a penetration test and have another one coming up that will be a surprise to our analysts (no set time for the testing as they want to surprise us). Next year is going to be nerve racking 😅

@saadkhaleel534 6 месяцев назад

This looks terrifying I mean if you mess up it could be really bad how can you get experience for someone that is his first time getting into the field.

@iscomakanaky Год назад

My first time coming across your channel. I enjoyed your video. I recently had my diploma in cyber security but I haven’t found a job yet. Is there any advice for me?

@madhatistaken Год назад

KEEP APPLYING endlessly. Not sure if you saw my other video, but I applied to 1,000 jobs and only heard back from roughly 15-20. Everyone is different of course, I didn't much else besides my degree to help my land an interview. Make sure your resume is up to snuff, add any projects/coding you've done to it to make it stand out more. Try to find some security related projects in the mean time to work on so you can add to your resume but also get your mind deeper in security so that come interview time, you can potentially talk about the projects. Review security concepts prior to interviews. Listen to podcasts on current cyber news so you can seem like this is a passion and not just a job. I also listened to a CISSP study guys for about 30 hours worth of time. Don't give up!

@Ib90 Год назад

Which cert or course teaches you these steps or they train you for it?

@madhatistaken Год назад

My cybersecurity degree taught me a lot of abnormal and hacking behavior, but every business environment is different. The company I work for hired me and another person with training in mind, so I had to learn the tools and baseline behavior of employees. I'm still figuring out what baseline is, but I have senior analysts to ask questions if I find behavior that seems suspicious. My degree taught me how to break into things but my current job taught me how to figure out what breaking into things looks like in a business/enterprise environment.

@Ib90 Год назад

@@madhatistaken oh thank you for the explanation, so you learned how to in and college and at your job your showed what your hacking. So those commands are universal to every software just different platform. Does the CompTIA Security+ teach these hacking techniques or I have to be pintester?

@gcb1452 Год назад

I'm currently working on my associates degree in cybersecurity. What degree (if any) do you have? Just curious if my associates will be enough for a job like this.

@madhatistaken Год назад

I've got a bachelors in cybersecurity and a few years of help desk experience. I was hired alongside another person who is still working on their degree in cybersecurity, so I'd say if you make a solid resume and have a lot of extra side projects to prove your passion/interest in the field you can get a job as a security analyst with a good amount of applications. Entry level positions are hard to come by but they do exist 🙂

@JuggRS 10 месяцев назад

Im just curious is this an enjoyable job.

@sandesh9442 Год назад

Quick question: how important is coding for cybersecurity?

@madhatistaken Год назад

Varies by company I imagine. Larger companies with robust tech stacks will require less coding and more knowledge of the tools and smaller companies might ask you to help tune existing software's code and implement new software to better suit the company's needs. I will say knowing the fundamentals of coding is important the higher up you go in cybersecurity. After all, we're expected to protect software/ people using the software and we can't do it very well if we don't know how it works 😁