This COVID-19 pandemic significantly influenced the worldwide economy. The rapid interruption to organization businesses around the globe has left organizations attempting to keep up security and business resilience.
Often in this fast shift, SOC divisions cannot monitor and track events coming from multiple sources, tools, and departments because they have no visibility into the threat environment or too much visibility in their infrastructure, which often leads them to false-positive incidents.
I have built this mindmap for people working in SOC division. This mindmap particularly informs two things:
- What ALL to monitor.
- From WHERE to monitor.
I hope this helps the community. There is no perfect list of SOC monitoring activities; hence I am open for any suggestion items that I can add or remove from this list.
Often in this fast shift, SOC divisions cannot monitor and track events coming from multiple sources, tools, and departments because they have no visibility into the threat environment or too much visibility in their infrastructure, which often leads them to false-positive incidents.
Download high quality PDF here - https://www.linkedin.com/feed/update/urn:li:activity:6664730823222276096/
I have built this mindmap for people working in SOC division. This mindmap particularly informs two things:
- What ALL to monitor.
- From WHERE to monitor.
I hope this helps the community. There is no perfect list of SOC monitoring activities; hence I am open for any suggestion items that I can add or remove from this list.
No comments:
Post a Comment