John Hubbard - A high level walk through of each day of the SEC450 course

Channel:
United States SANS Institute
Subscribers:
64,000
Published on ● Video Link: https://www.youtube.com/watch?v=MmjMK_eaMz0


Category:
Walkthrough
Duration: 7:04
294 views
8

Day One is the initiation to the Blue Team. It explains ‘Here’s why we're here. Here's what we're doing,’ at a high level. I'm framing out the course, explaining the mindset you need to have as a defender, and understand that you are here to provide a service for a company that's ultimately sort of like loss prevention. You're going to have a non-ideal set budget and tools and things to work with and you're going to have to make the best of it. You're also going to have to work with management to understand what the concerns are and make sure your tools and things are aligning with those.
That's how the class starts and setting the mindset of this is what the job is. And, yes, we all want to come in and tear everything up and make the most perfect security, right. But then we find out that's not something that can happen in a lot of cases. I love the energy new analysts come in with, "Oh, we're doing all this stuff and we need to fix it." And I'm like, "Yes, I get that, but we also have to make sure things continue to get done around here." So it's really about finding the balance of what's the best that we can do while still hitting budget and the goals of the threat model or whatever it is that the company is worried about. We talk about that just in the first part of the first day to set the stage for what we're doing and why we're doing it.
Then we start talking about the tools of the SOC …

--

Learn more about John Hubbard and the SANS SEC450 Blue Team Fundamentals course:
Full blog post: http://cyber-defense.sans.org/u/XoF
SEC450 course page: http://www.sans.org/u/Xns
John Hubbard’s bio: http://www.sans.org/u/Xnx
Connect with John on Twitter: twitter.com/SecHubb



Other Videos By SANS Institute


2019-11-19Applying Inconsistent formatting - Common Cybersecurity Writing Mistakes
2019-11-19Including indecipherable graphics - Common Cybersecurity Writing Mistakes
2019-11-19Overstuffing the paragraphs - Common Cybersecurity Writing Mistakes
2019-11-19Burying the Main Point - Common Cybersecurity Writing Mistakes
2019-11-01John Hubbard - How were you introduced to SANS?
2019-11-01John Hubbard -If you’ve completed a 500-level course should you still give thought to taking SEC450?
2019-11-01John Hubbard - How to determine whether SEC401 or SEC450 is best?
2019-11-01John Hubbard - Will SEC 450 carry a certification?
2019-11-01John Hubbard - At the end of the SEC450 course, what do students come away with?
2019-11-01John Hubbard - What are some of the key tools covered in SEC450?
2019-11-01John Hubbard - A high level walk through of each day of the SEC450 course
2019-11-01John Hubbard - Who exactly was the SEC450 course designed for?
2019-11-01John Hubbard – About the SEC450: Blue Team Fundamentals course
2019-11-01John Hubbard - How long did it actually take you to write the SEC450 course?
2019-11-01John Hubbard - Did you interview other analysts and dial back to your days as an analyst?
2019-11-01John Hubbard - Why were you the one to create a course for new Blue Teamers?
2019-11-01John Hubbard - How did teaching at SANS come about?
2019-11-01John Hubbard - key things that helped him rise from being an analyst to becoming a SOC manager
2019-11-01John Hubbard - some of the early challenges as a young SOC analyst
2019-11-01John Hubbard - aspirations of becoming an engineer
2019-11-01Introducing John Hubbard


Tags:
sans institute
sans sec450
sec450
blue team fundamentals
john hubbard
security operations
soc
cybersecurity
cybersecurity training
cyber security
infosec