Hi there,

This is Dimitrios Bougioukas, Director of IT Security Training Services at eLearnSecurity.

This story will be the second entry of our Blue Team Diary.

It is a known fact that the traditional (reactive) defense model is both ineffective and obsolete. The sophisticated techniques, tactics and procedures of modern adversaries necessitate that organizations adopt a proactive defense model and transition to SOC 3.0 operations to be better protected. We recently delivered a webinar where we provided attendees with a clear and technical plan on how to transition to SOC 3.0 and, most importantly, on how to establish a tactical analytics capability to effectively detect and defeat advanced adversaries.

During the webinar the following were presented:

The current state and main pillars of SOC 3.0 operations (Tactical Analytics, Adversary Simulation & Practical IT Security Stuff Training)

How to defend against the next-generation cyber-attacks by utilizing Tactical Analytics

What kind of data organizations should consume, why they need to enrich them, how to analyze and correlate them, as well as how to utilize prebaked SIEM queries as tripwires to swiftly detect sophisticated attacks

A technical demonstration regarding how tactical analytics could have been used to detect an APT-level operation against a corporate network

You can watch a recording of the webinar below. Let us know your thoughts…