Is a SOC analyst an entry-level cyber security role? | What is Vulnerability Management?
Vložit
- čas přidán 26. 08. 2024
- Get into cybersecurity with Leveld Careers and use my code TechTual10 to get 10%off your course.
⬇️ www.leveldcare...
Have you wondered if you can work in a SOC with 0 experience? In this snippet Destini breaks down how it feels to work in a SOC with ) cyber security experience. She also talks about what is vulnerability management and why it is necessary in any environment. #socanalyst #cybersecurity #vulnerabilitymanagement
Watch full episode here: • She Quit Claims Adjust...
➡️ Need help getting into Cybersecurity for a low price?
Check out Josh Madakor's Cybersecurity course at Leveld Careers and use my code TechTual10 to get 10%off your course.
⬇️
www.leveldcare...
➡️ Need a new resume done or need coaching from me⬇️
techualconsult...
➡️ Want to land your first IT Job?
Then check out the IT course from Course careers use my link and code Techtual50 to get $50 off your course ⬇️
account.course...
➡️Looking to start your career in the cloud? If so check out the link below: ⬇️
Levelupintech.c...
➡️ Donate to the channel here: paypal.me/tech...
Subscribe to my mailing list: forms.wix.com/...
➡️ Check out The TechTual Talk Podcast: thetechtualtal...
➡️ Follow me on social media:
Instagram: / techtualchatter
TIkTok: / techtualchatter
Twitter: / techtualchatter
LinkedIn: / henri-davis
-----------------------------------------------
FTC Legal Disclaimer - Some links found in the description box of my videos may be affiliate links, meaning I will make a commission on sales you make through my link. This is at no extra cost to you to use my links/codes, it's just one more way to support me and my channel! :)
➡ Need help getting into Cybersecurity for a low price?
Check out Josh Madakor's Cybersecurity course at Leveld Careers and use my code TechTual10 to get 10%off your course.
⬇
www.leveldcareers.com/a/2147530874/RuqjrBGj
➡ Want to land your first IT Job?
Then check out the IT course from Course careers use my link and code Techtual50 to get $50 off your course ⬇
account.coursecareers.com/ref/50932/
➡Looking to start your career in the cloud? If so check out the link below: ⬇
levelupintech.lpages.co/level-up-in-tech-book-a-call-tech/
➡ Donate to the channel here: paypal.me/techtualconsulting?country.x=US&locale.x=en_US
She is right when it comes to vulnerability management. You must have good communication skills to motivate the team to the sense of urgency having workstation and servers patched.
I tell them the volunerability and what they need todo to remediate it. If they dying listen that's on them. We force assets into quarantine after grace period.. Then they scramble because it now affects their productivity. Shouoda listened.
@ShadowAssault Is your quarantine threshold properly documented?
Do you have an exception management process?
2:51 One of the best pieces of advice you can ever give. This could be applicable to other fields, but in cybersecurity, there are so many aspects to learn. If you can help, then help that person understand that issue or principle. People gatekeep information to not work any harder than they have to or to claim "job security." It's wild out here in cybersecurity. 🤣😆
Extremely wild man 😂😂
As someone who has spent their first year in a SOC, this is wildly accurate 😭 it is definitely the wild Wild West.
When everyone wants to be a gatekeeper, it pays to be Cerberus. 🐺
Shes right about vuln mgmt done it for 5 years and its not sexy but it gives you so much experience on different technologies and you gotta know how to finesse basically.
I love that question, "Is that something I should've known?"
I know someone in the field that complained about being payed less than the new guys he was training because he didn't have the same degree. He switched companies and got a huge pay raise lol.
Good move
I like that you guys started with telling people to be helpful to new comers because I actually switched from
networking to Software dev because when I got to my first MSP which was small and family owned….I came across rude and unhelpful coworkers. I believe they did not want another person in their three man team so they barely spoke to me and showed obvious hesitation when I would ask for help even knowing I had no experience except for self taught knowledge. It was a nightmare. So much so that I went back to truck driving and self taught myself a coding language. I still have dreams of eventually getting into cybersecurity but I will spend some time as a backend dev using python and SQL.
Man, I am gonna simp a little, but you have some of the finest nerdy ladies on your show. Why don’t they exist around where I live? 😅
They may be out there you never jnow
Yes, sharing the knowledge is key, build relationships
As a black woman currently pivoting into the Cyberspace/Cybersecurity world, you have gained a new subscriber
Thank you ❤️
“As a black women” always using the race card
@@joice2871 stupid comment of the day goes to ypu
@@TechTualChatter says the person that can’t spell “you”
@@joice2871 auto correct 🤷🏾
Good interview. Honesty and transparency. Imposter syndrome can be real but keep learning and find a good team that will help you grow. Very important in this field.
Facts
I will never leave SOC engineering for analyst, people wanting to get into SOC analyst have no idea about the stress waiting for them.
In what way? I am starting in learning to be an information security analyst so I'm curious.
@@domt1625 Well, basically you are the last line of defence, so if there is a real security issue you will have to resolve it fast.
Also, the work is super repetative and you will go through a lot of false positives.
So besides stress/burnout you also have boreout factors.
@batserke6006 first line of defense not last
@@TechTualChatterFirst line of defense are the FWs and other defenses in place. You can argue that there is also csirt teams after analysts, but that’s beside the point I wanted to make regarding stress and boreout. Hierarchy is different in each company anyway.
Yup but burnout only happens when the environment is not tuned correctly
One of the most frustrating things about being in infosec is dealing with leadership that thinks compliance is security.
It is security though…
what do you mean by that?
@@joelrobert4053he's prob meaning that some C-levels do security by compliance, not to actually enhance the company security.
Compliance must be complied with! 😂😂😂
@@JeffCaplan313right or you get fined 😂
"absolutely not for entry level people" Then paid promotion into, Become a cyber security professional! No degrees or certs required!! $113k average annual salary!!
Every role is not a soc role in cybersecurity lol
Great advice on how to work with others and build competence. What a cool job and seemingly very complex.
I was recently hired as an associate SOC Analyst and I’m very nervous about how I’ll fit in when I start
Just ask good questions and research documentation at work( if there is any) it’ll help out alot
What experience and certs do you have?
Ask questions. Document.
That's all there is to it.
I'm so happy I found this podcast. I'm currently working on my certification. I'm so glad you're here.
Appreciate you! What did you take away from this episode
I just got my google cyber security certification, and IT Administration certification. I’m looking for an opportunity
Energy as you call it is key in life. 3:56
You get out what you put in 😁
I just got through my qualys training ! it was worth it
Nice!!
ok im scared. mission accomplished
How does one create a homelab? Is it cost prohibitive if you're not working?
One day I'm going to be a guest on your show. Keep up the great content!
Say less bro!
Wow you mentioned Wanna Cry virus. I work for NYCT. I had to go into the subway tunnel in one of the heating rooms and remediate a computer that got hit with wanna cry.
Nice!
Great guest and great interview. 👍
Appreciate you 💪🏽
For the first time in 10 years I had my first bad co-worker experiance. The guy was a jealous jerk, he didn't want to train the new onboards on certain processes and I was one of those onboards what pissed him off about me is that I hit the ground running as they like to say in tech. I was taking ownership and closing tickets in my first week I'm experianced what did they expect? Anyhow, we didn't get along he picked at me for one last time and i let him know about himself. He had a relationship the manager so she kept him and I lost my job even though there were people who had my back.
Smh
If you financial can do it, I would get an employment lawyer because that is conflict of interest
Noice...this was great to wake up to with a coffee! Appreciate the experience advice! Take care!!
Would you please give the interviewee in the video more time to chat about their experiences? You keep talking about your experiences as the host. 02nov23
Watch the whole episode,…
@@TechTualChatter If you're talking about this video, I did watch the whole thing while I am at work. Hints why I gave my comment. The title intrigued me but you hardly allowed the interviewee to explain.
@@blackamericanlesbianprofes4357 im talking about the full episode. This segment wasn’t long they explained what they could
@@TechTualChatter I will look for the complete interview video when I have time.
@@blackamericanlesbianprofes4357 no worries the link is in the description
To sum it up the episode is about her transition from insurance to cybersecurity specifically working in the cloud
M trying to get my hands on every small content that goes about Cyberspace
Got a question what is CompTIA’s Healthcare IT?
Does not exist
i need be soc analyst, where i found a job. are important the idiom ?
I tell them the volunerability and what they need todo to remediate it. If they dying listen that's on them. We force assets into quarantine after grace period.. Then they scramble because it now affects their productivity. Shouoda listened.
This is very informative , Thanks
Great conversation - keeping it real!!
Thanks 🙏🏾
6:20 vulnerability management
I hoped cybersecurity was more of meritocracy. Sad to hear about those typical 'isms' within cyber.
I’ll be booking a consultation with you in a few months!!😁
Sounds like a plan!
I try to tell people all the time that a SOC, or security in general, is not an entry level place.
Thanks for the great video. I'm currently studying for the Cisco CyberOps Associates to help me land an entry level position so this video helped a lot in knowing a little bit about what to expect in a SOC position. In your opinion, will I have a better chance of landing a job in help desk or as a Jr. SOC analyst? Thanks
I don’t know your background so it’s hard to tell
I have zero experience in IT field. I've taught myself some HTML and CSS code over the years but I'm coming from construction and trying to change careers so I'm starting from the ground up. I do have an associates in general studies. Thanks@@TechTualChatter
As a financial analyst, is their an equivalent within the tech sphere where I could learn tech applicable skills?
Yes there is. There is a space called governance risk and compliance
Very informative for a new SOC Analyst
Glad you liked it!
Wish I could get into IT. Too bad it’s too late.
It’s never too late to
Cybersecurity in general is not entry level. How can protect a system without understanding how that system works?
@@Pk223-r1t easy by learning how to protect it…
@@TechTualChatter Right, so you're going to learn how to protect a network without learning how a network works - Don't you claim to have a cybersec background? I understand you need to use click-bait to get your channel going but that's misleading to a lot of people.
A good application pen tester generally understands how applications work. Even the lowest, most brainless feeder roles in cyber like SOC analyst demand a general IT understanding. A simple role like a Security Engineer requires Networking knowledge. You can't really work with a Firewall without understanding Networking. It is inherent to the technology you're trying to protect.
Most people compare Entry level IT jobs (Helpdesk) with Entry level Cyber jobs (SOC analyst, Security engineer), which is wrong, the Entry level cyber roles expect you to have the help-desk knowledge at a minimum.
@@Pk223-r1t do you want a cookie ?
because you clearly haven’t watched the full episode 🤣
@@TechTualChatter Well that much is true at least, I'll go and finish watching it. :D
attest to this. As I went through the various hardening standards I’d basically pivot to a google search of xyz setting. NOW be careful not to go crazy and spend hours looking into one term. This may not be the best advice but understand the general idea and pivot back to the hardening content.
CIS has free accounts and I think they’ll offer preconfigured images (fact check me on that tho)
She is attractive, she is going to get the help need, unless she works around some females
Lol
shortbus logic
Great interview 🙌🏾💯💯💯
She is so pretty!!! Love to see a successful black girl in tech
ty
No problem
What’s her name?
It’s in the description
Try to spell out what acronyms mean for newcomers to your channel that might not know.
That wouldn’t have made for a good tittle
Nonono! Security through obscurity (STO!) Use all the TLAs!
Its not worth it working in a soc.
Yeah it is
Took my security + and failed
Focused on the areas you are bad in and retake it
@TechTualChatter brother I plan on it. I'm trying to install Ubuntu on my VM Box to get a better understanding and for whatever reason, I can't get that to work properly. Worst month of my life
@@chrisb1906 using Mac or windows?
@@TechTualChatter windows
@@TechTualChatter windows 10
Not to be that person but how are you saying your not about the "become cybersecurity professional in three months with no experience" bull but your accepting sponsorships from such people and organisations? That's being a hypocrite
Its not a hard role if you have skills lol
oh yeah try working construction on high rises that we'll talk 😂😂😂
The interviews literally feels like interrogation.
This snippet is chopped up the full version isn’t
JEALOUSY smh
lol what a joke. Seriously it makes me laugh to see how It security folks do nothing and relies on tools. Everything is well documented and standards are in place . Easiest work
Man shut up cause it’s definitely not always documented 😂
"RTFM"
And if it's NOT documented but you still figure it out, welcome to the world of reverse engineering! 🤓
Fun Fact this job won't exist in three years AI will replace her and him
False 😂😂
Ai can’t be used everywhere just yet
Look at AI as a tool and not a competitor.