Security Operations Center (SOC) Explained
IBM Security QRadar Suite: ibm.biz/Security_Suite_QRadar
Security Operations Center (SOC) : ibm.biz/Security_Operations_C...
If you have a problem in cybersecurity, where do you turn? Modern organizations have a "SOC" or security operations center. Its mission is focused on detection and response; in this video, Jeff "the security guy" Crume explains the people, process, and tools involved. To ground the discussion, Jeff presents three security incidents and explains how they're handled by the SOC.
Get started for free on IBM Cloud → ibm.biz/ibm-cloud-sign-up
Subscribe to see more videos like this in the future → ibm.biz/subscribe-now
#AI #Software #Dev #lightboard #IBM #JeffCrume #QRadar #SOC
Пікірлер: 45
one of the best video i have seen so far in SOC - easy to understand and follow
I especially like this teacher‘s lecture style, which is easy to understand and gives vivid examples!!! Update more 😮
@jeffcrume
Жыл бұрын
Thanks so much for the kind complements!
@chanyuan-cv4op
Жыл бұрын
I‘m Chinese and I can’t speak English. I‘m reading your course with automatic translation. 😁
Love it, great explainer ❤ keep up the great work!!
This was excellent, thanks for sharing.
Excellent delivery
@jeffcrume
2 ай бұрын
Thank you!
Nicely simplified.
Very good! Thank you
Short and sweet
Thank you
wonderful
Thank you so much professor
@jeffcrume
2 ай бұрын
You’re very welcome!
thanks
This is excellent!
Good 👍
Ma man you're the best
@jeffcrume
4 ай бұрын
You’re very kind to say so!
It would be helpful to show how the Incident Response Team (IRT) works with the SOC. Some IRTs have an operational objective of being the Threat Hunters or Pen Tests.
@jeffcrume
4 ай бұрын
Good idea. I’ll consider that for a future video
👍🏾
Please provide information on IBM NOC service.
Haven't used a SOAR. Had Cases where T1s are doing T2/T3 and Threat hunters work load is already astounding. Yet to see how many companies do avail the bare minimum for compliance, that must be a wow. literally had occurrence where clients are knowledgeable more than the vendor support. How is burnout outlook for cyb personnel in this industry for the next 10 years? It surely is sending a fraction of people to switch to red team work and skillset, or go grey. That itself is already a risk to the industry is it not? Skill personnel shortage, out of scope work, burnout rates. Misconfigured MSP Teams... Cyber is one of those industries you'd come to love/hate.
@jeffcrume
11 ай бұрын
I say that cybersecurity is an “acquired taste” and not everyone “acquires” it. But for those who have … 😊
Can you share your screen and show what do you really mean?
Will ai also affect cyber security jobs? (Can you guys also give me a detailed roadmap of getting into cyber security. I'm a civil engineering graduate trying to get into cyber security. Pls comment the roadmap from initial position to senior level. Thanks in advance)
@manhoosnick
Жыл бұрын
Hey Ashfaq, did you get a response from Jeff? I can't see any. Please copy paste if you can. 🙏
@LoveYourFamily2
Жыл бұрын
If the second question is still relavant, they have a vid "Careers in cybersecurity" that might give you necessary info. Regarding the first question, my quess is that cybersecurity tasks will always need both creativity and professional "intuition", so ai will be an important tool, but it will never replace human cybersecurity specialists.
@diehardf
7 ай бұрын
The ai itself also need to be secured so I'm not sure 😂
@spiderz5962
Ай бұрын
i dont think so. yeah, maybe ai can automatize processes but (at least) humans think problems in more of a unique way, a way that machines do not. machine for coding, not for thinking, a machine wouldn't save your company if its getting nuke'd prob. on todays world ai can help you a lot but i dont think it will annihilate human SOC (even pententesters) jobs
I'd love to start a career in CyberSec, are there any IBM certs or apprencitceship or anything that can help me ? Thanks a lot
@jeffcrume
Жыл бұрын
Please see my previous response to Ashfaq Ahmed
@manhoosnick
Жыл бұрын
@@jeffcrume thanks Sir
@manhoosnick
Жыл бұрын
@@jeffcrume I can't find your response to his comment.
Lol, I thought you were gonna explain SOC - System On a Chip 😂
3:33 Threat hunting
How is he writing in reverse??
@amagagaming09
14 күн бұрын
This is what I keep on wondering whenever I see his vids 😂
no need for having seperate levels, its old fasion. no need to have manager role. we need a tech leader with extensive cyber sec knowledge. team management is an old topic which is gone in new modern organisation.
@jeffcrume
5 ай бұрын
I think it depends on the size of the organization, level of sophistication of the personnel, complexity of the environment and countless other factors
@angelkern
5 ай бұрын
CIRT team leader should be the SOC leader and have the authority to "call" the incident and invoke the team.