SOC Level 1 Training

Recently I have been looking for a course to help me prepare for my first cyber security job. TryHackMe offers a great interactive training course to get learners ready for a level 1 Security Analyst position. I decided to complete this course to expand and deepen my knowledge and improve my threat response skills.

This course covers everything a Security Analyst level 1 needs to know to be successful in a position. It also goes into threat resolution and common best practices.

Section 1 covers Cyber Defense frameworks. The five frameworks in the course are the Pyramid of Pain, Cyber Kill Chain, Unified Kill Chain, Diamond Model, and the Mitre Attack Framework.

Section 2 covers Cyber Threat Intelligence. This section includes an overview of common Threat Intelligence Tools, as well as an overview of Yara, OpenCTI, and MISP.

Section 3 covers Network Security and Traffic Analysis. This section goes over core concepts of Network Security and Traffic Analysis tools and techniques.

Section 4 covers Endpoint Security Monitoring. This section is all about monitoring Windows systems and getting to know common Windows processes and logs. It also goes into SIEM monitoring and querying for logs.

Section 5 is all about SIEMS. This section is all about understanding exactly how SIEMS work and advanced log search queries.

Section 6 is about Digital Forensics and Incident Response. This section is all about identifying forensic artifacts and understanding how you can use them to investigate security incidents.

And finally in section 7 the main topic is Phishing. This section is about the most common and often dangerous attack types, phishing. This section teaches defense and analysis techniques against phishing attacks.

I am starting this course today and will be consistently working on it until completion. I hope to strengthen my security skills and use this course to gain confidence in my abilities.

This is an extensive course, with a completion time of about 60 hours. Upon completion of this course, I will receive a certification. I will make an updated post and review my experience with the course at that point.