Maybe this is common sense but what I learned in the past during incident response engagements is, that knowing your team and colleagues is at least as important as knowing your tools.

I highly recomment to train incidents with platforms like CyberBit (https://www.cyberbit.com/platform/cyber-range/) not only to sharpen your technical skills but also to learn on how to document your incidents while you're working on them. Documentation goes a long way during an incident. Trust me with that one. Even if you start out with an Excel sheet, it's better than nothing and during your trainings you learn the pro's and con's of your documentation tool and can fix it while not everything around you is on fire.

Bonus points if you randomly mix your teammates during the different exercises to learn how to best approach the different characters in your team and how to best leverage them to achieve your common goal.

#incidentresponse #BlueTeamAnalyst #BLUETEAMTIPS

I suddenly realize/believe why there is more of a demand for Blue Team Cyber Security professionals.

Is it because there are already enough Penetration Testers or Read Team people out there carrying out hacks in real life? Even though they're malicious?

Ethical Hacking and Red Team for legitimate companies are still preemptive measures to security breaches. If you count unethical activities there are more than enough events "testing" your security and there is more of a need to defend or stop these activities...

Am I correct to assume this? Or am I way off???

#cybersecuritystudent #cybersecurity #RedTeamAnalyst #BlueTeamAnalyst #readteam #blueteam