New to Cyber Security? Just joined a SOC as a Tier 1 Analyst? Here’s some basic tips and concepts to think about when approaching your alert triage and investigations.
If you are trying to join the infosec industry, or are part of it already but you are looking to expand your knowledge/skills, I am sure you have heard blanket statements when it came to choosing an area of focus. I am referring to sentences like “You need to learn linux”, or “You have to know networking”, or “You have to focus on coding”. While most people will only have good intentions, sharing these very broad opinions with no further guideance or context can be counterproductive for an industry desperately searching for new talent. I am of the opinion that we do not check often enough how low or high the barrier of entrance is when it comes to learning fundamentals on ever-growing pillars of our industry.
A lot of the time, newcomers in infosec (or any profession for that matter), have a difficult time knowing when to speak up. This could happen around senior coworkers, or even the other new folks.