SOC Analyst Journey In Thirty-Days
MyDfir 30 days challenge for any aspiring SOC Analyst professional or Newbie. I find this challenge interesting with the content outlines which i applied with “SOC” on there YouTube channel to participate in it.
Are you excited to go along with me about the SOC Analyst journey in thirty days. C’mon let’s start the day one challenge and i believe you’ll learn a lot in this journey.
DAY 1
The above image speak about before building anything there will be an architect to help us to design a building with a minimum resources that we have (One-two plot of land / acre / Interior). When a layman see the design they’ll know this a room drawing / electrical drawing / HVAC drawing e.t.c
“Before deployment there’ll be a design. — Abdul Basit R.
So why did we mentioned about an Architect because as a SOC Analyst / Manager / Consultant before we offer a services to a client about hardening a SOC environment we’ll need a SOC Architectural design which will be our guide for a successful deployment of tools and safeguarding our environment.
FLOWCHART / ALGORITHM / PSEUDO-CODE
There are some stuff that I learnt during my Associate degree in Computer science under programming the topic is Flow Chart the building block for the programmers to know what to build, what is working or not and what to achieve.
It is one of the suitable thing i love most when i was in school. Also Pseudo-code and Algorithm. learn more
My advice for you is that any field you find yourself just learn it very well other transition will be easy peasy with persistence.
Let’s Design a SOC Environment Design
Every organization have there design on SOC ( Security Operation Center) and i will be guiding you through based on the challenge with MyDFIR.
Let’s get started:
There’s different platform to design your SOC like miro, mindmap e.t.c. but i’ll be using draw.io, it is a suitable platform and it’s well known within the security professionals.
The image above is what you’ll see when you visit the website it is a web-based application.
The more shapes button, click on it then select the shapes section you need (General, Basic, Arrows, Clipart, Flowchart …) once you’re done click on apply.
This interface is meant to design what you like but don’t forget we are designing a SOC Architectural drawing for our SOC-as-a-Service (SOCaaS) company.
That’s a round square click on it and it’ll appear on the drawing /workspace space.
Instead of using a couple of hours to search for a single clipart icon kindly use the search space on the left side of the draw.io. Search for Server different icon will appear but use the best of your choice. we’ll be using the search space through out our this blog.
Why Servers:
This servers will serve as the backbone of our network setup. we have six servers imported.
Huh!, What’s that?
That’s the six servers will have
- Elasticsearch & Kibana
- Windows Server with RDP Enabled
- Ubuntu Server with SSH Enabled
- Fleet Server
- OS Ticket Server
- C2 Server
Why did we need all this servers? don’t worry you’ll learn about it soon but just follow the step by designing our SOC architectural design. we’ll contact someone to deploy it for us or we can also do it by ourselves.
Just looking at the diagram and the words on the arrow you’ll understand the what we are to work on as a security professional. we are deploying all our servers on a Virtual Private Cloud (VPC) using VULTR
The bad guy clip art: This might be anyone that are trying to steal our crown jewels (private, sensitive, critical, confidential, secret, top secret data) from us. That’s the reason why we need a SOC Analyst to help us to monitor our crown jewels 24/7 just like your local security at your home watching over you from theft.
YES!!!!, We did it….
Clap for yourself you just designed a SOC platform for yourself or a SME Enterprise. This is very lucrative and it really worth it to know as a SOC Analyst.
Just master this skills, I have been designing such for myself, SME and folks that want to fast track there SOC skills.
Thank you so much MyDFIR i appreciate this challenge and i will try my possible best to document every step for other folks.
What next?.
Stay tuned and relax.
Follow MyDFIR also ME for more content.
#CyGameDev
