A SOC Analyst continuously monitors and detects potential threats, triages the alerts, and appropriatley escalates them. Without a SOC analyst, processes such as monitoring, detection, analysis, and triaging will lose their effectiveness, ultimately negatively affecting the organization.
1 – Security Operations and Management
2 – Understanding Cyber Threats, IoCs, and Attack Methodology
3 – Incidents, Events, and Logging
4 – Incident Detection with Security Information and Event Management (SIEM)
5 – Enhanced Incident Detection with Threat Intelligence