Axi0kers0s πΎ · @axi0kers0s
55 followers · 271 posts · Server infosec.exchangeSaturday on SOC duty ... Dashboard full of alerts and haven't had the chance to sip my coffee yet ... Long day ahead #SocAnalysts #socsaturday
Joe Shenouda · @shenouda
100 followers · 97 posts · Server cybersecurity.masto.hostHackers often exploit more during the holidays due to an increase in online shopping, financial transactions, and travel. This can lead to a busy and stressful time for SOC analysts, who may be working with a smaller team to monitor and respond to security incidents. Stay vigilant about cybersecurity during the holiday season to protect yourself and your loved ones. #cybersecurity #holidays #SOCanalysts https://www.linkedin.com/pulse/why-grinch-loves-holidays-joe-shenouda-cyber-security
#cybersecurity #holidays #socanalysts
Chris Sistrunk πΊπ¦π · @chrissistrunk
1140 followers · 192 posts · Server infosec.exchangeπ° Hot off the press π°
---------------------------------------
I wrote this article for PowerGrid International magazine and it is to help folks with tuning their ICS /OT / SCADA network security monitoring alerts. π οΈπ You don't have to reinvent the wheel!
***If ICS NSM is in your responsibility, please read this article (link below) I would love to get your feedback.***
Documentation about tuning ICS NSM systems are rare. ICS NSM solution documentation tends to focus on how to turn on and off the baseline feature, and not go into specifics about how to fine tune the system.
If you buy an ICS NSM solution and forget it, it will be useless. If a vendor says their sensor/IDS requires no tuning, they are lying to you. An unmanaged and untuned ICS NSM or IDS will create floods of alerts, nuisance alerts, and contributes to alert fatigue for your engineers and SOC analysts.
Thank you!
π°: When fine-tuning your cybersecurity alerts, itβs best to focus on the basics
https://www.power-grid.com/td/when-fine-tuning-your-cybersecurity-alerts-its-best-to-focus-on-the-basics/
#ICS #OT #SCADA #icssecurity #otsecurity #networksecuritymonitoring #NSM #IDS #SOC #SOCAnalysts #BlueTeam #tuning
#ics #ot #scada #icssecurity #otsecurity #networksecuritymonitoring #nsm #ids #soc #socanalysts #blueteam #tuning
Sarah Young · @sarahyo
502 followers · 23 posts · Server infosec.exchange
RT @fancy_4n6@twitter.com
One of the most popular of @fr0gger_@twitter.com's #infographics is this #Log Parsing #Cheatsheet.
Very helpful to have on hand when analysing large sets of log data.
#dfir #SocAnalysts #LogTools #Grep https://twitter.com/fancy_4n6/status/1596350990642712576
π¦π: https://twitter.com/fancy_4n6/status/1597044975417819136
#infographics #log #cheatsheet #dfir #socanalysts #logtools #grep