Softdocs’ Post

SANS work study - a mini review I was fortunate enought to have the opportunity to join SEC530 Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid Enterprise recently live online at SANS San Antonio 2024 by SANS Institute and just wanted to give you a heads up on my experience. Tldr; If you are looking to further your knowledge and build your certification portfolio I hope you will consider applying to the SANS work study program (https://lnkd.in/eBbZrJiK) i can honestly say my experience has been amazing positive. Its a great way to gain additional valuable knowledge and qualifications for a significant discount. I applied to join the SEC530 course (and quite a few others) back in April and was accepted at the start of June, the only downside of the work study program is that you will only find out about your selection about 4 weeks before the start of the course. When you apply i would suggest looking at the course description for all the courses running at the event you want to apply for and pick a few courses that your interested in. Make sure to put some time into your application as well. Personally id treat it with the same effort and consideration i would a job application. After being accepted for the SEC530 course at San Antonio live online and paying the fee (about 1/4 of the normal fee). I received my books about a week before the course along with my moderator instructions via email and a video guide to whats expected of you as a moderator. My role as moderator consisted of conducting the AV checks every day, ensuring closed captions were working and that the recording started. Throughout the day i would monitor the audio, check the chat to make sure any questions were picked but by the instructor or the Teaching Assistant and making sure that i announced breaks, return from breaks and lunch etc. I would also need to keep the teams informed of any issues e.g if the instructor disconnected so they can be re added with the correct rights etc. You get the chance to take full part in the class as long as you can keep on top of those little issues including and breakouts and the ctf at the end if applicable. (I was fortunate enough to earn my first challenge coin this course) and have full access to recordings, electronic versions of the reading material etc. At the end of each day you just need to let the team know when everything is wrapped up so recordings can be stopped and remind everyone of the start time for the following day. All in all i had a great time during my course and had great fun with the friendly teacher and TA who were a great laugh. I got to learn a lot, enjoy myself and got to know some new people. Now im just looking forward to getting into my studies to pass my GIAC Defensible Security Architect (GDSA) certification - one attempt and two practice exams are included in the price. If you get the chance i whole heartedly recommend it. 10/10

Did you know that 90% of cyber security attacks start with a simple email? Amazing to think that with how mature and embedded email has become in our lives it still poses such a massive security risk. Check out our helpful Email Security guide on what you should do to help protect your business, staff and customers. https://lnkd.in/grPV6zAm #emailsecurity #protectyourbusiness #phishing #victorianbusiness #australianbusiness #businessowner

Wonder why SOC 2 certification keeps popping up on district security checklists for digital curriculum? It's simple: SOC 2 is the gold standard for data protection, ensuring student information stays safer than Fort Knox. By partnering with a platform that's already SOC 2 certified, you're not just checking a box - you're joining forces with a security superhero. It's like getting a seasoned bodyguard for your data without the hassle of training them yourself. So when you see SOC 2 on that checklist, don't sweat it - embrace it!

Be the hero of your district's cybersecurity! 💪 Take the lead in safeguarding your students and saving your district money. Here’s why you should join the SecureClass Early Access Program: 🗣️ Your feedback directly helps us build a cybersecurity solution tailored to #K12 needs. 🤝 Be part of a dynamic community of early adopters, sharing ideas and driving progress. 💡 Elevate your district by being a thought leader in creating accessible, secure solutions for K-12 education. Don’t miss this chance to make an impact and get 60 days free: https://lnkd.in/eWmEmKNR #Data #Safety #Cybersecurity #Education

Few weeks ago, I completed the sixth course in my Google cybersecurity course; Sound the Alarm: Detection and Response. What a great course it's been so far. I absolutely enjoyed every bit of this course. I learnt more and my knowledge and skills have grown broader on Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Anomaly-Based Intrusion Detection System, Security Information and Event Management (SIEM), Network Security, Computer Security Incident Management, Network Configuration and Change Management and Template-Query Languages. Detection and incident response are an important part of a cybersecurity analyst’s work. I explored how to verify and respond to malicious threats and become familiar with the steps involved in Incident Response. I had hands-on experience with using network analysis tools, commonly referred to as packet sniffers (WireShark and tcpdump), to sniff the network and analyse packets to detect and prevent malicious threats. I also crafted filtering commands to analyse the contents of captured packets. I learnt about the various processes and procedures in the stages of incident detection, investigation, analysis, and response. Then, I analysed the details of suspicious file hashes, explored the importance of documentation and evidence collection during the detection and response stages and approximated an incident’s chronology by mapping artifacts to reconstruct an incident’s timeline. I explored logs and their role in Intrusion Detection Systems (IDS) and Security Information Event Management (SIEM) systems in-depth by learning how these systems detect attacks. In addition, I wrote basic IDS rules to provide alerts for malicious network traffic. I guess I need to skip the part of saying that learning all of these is really interesting. I bet you can tell already! 😁

I am thrilled to share that I’ve successfully completed the Sound the Alarm: Detection and Response course, endorsed by Google. Throughout this course, I delved into incident detection techniques, honed my cybersecurity skills, and gained valuable insights into safeguarding systems. The key takeaways for me include the importance of proactive threat hunting, effective incident response strategies, and enhancing my professional toolkit using Splunk and Chronicle. I am eager to apply this knowledge and collaborate with fellow professionals in the field. Let’s connect and discuss cybersecurity! #Cybersecurity #Certification #ProfessionalDevelopment 🚀

🔔🚨 Thrilled to Announce: Module 6 Complete! 🔔🚨 I'm excited to share that I've successfully completed Module 6 of the Google Cybersecurity Professional Certificate: Sound the Alarm: Detection and Response! 🎉 In this module, I delved into the critical aspects of detecting and responding to cybersecurity incidents. Key highlights include: 🔍 Understanding different methods for detecting security incidents 🛠️ Implementing incident response processes and procedures 🔒 Exploring strategies for mitigating and containing security breaches 🚨 Learning about the importance of continuous monitoring and improvement This module has equipped me with essential skills and knowledge to effectively identify and respond to cybersecurity threats, further strengthening my expertise in the field. #Cybersecurity #GoogleCybersecurity #ProfessionalCertificate #IncidentResponse #Detection #Security #InfoSec #CyberThreats #ContinuousMonitoring #SkillsDevelopment #CareerGrowth #SecurityInformationandEventManagementtools #SIEM #PacketAnalyzer #IntrusionDetectionSystems #IDS

Through the Google Cybersecurity Certificate, I gained a strong foundation in key cybersecurity concepts, including network security, threat analysis, and vulnerability management. I learned how to identify, assess, and mitigate risks and the importance of security protocols and incident response. The program also covered practical tools like firewalls, encryption, and access control. Additionally, I learned basic Python for automation and scripting. I gained hands-on experience with Splunk for log analysis and monitoring, equipping me with the skills to protect organizations from cyber threats.

Excited to announce the completion of Course 6, 'Sound the Alarm: Detection and Response,' in Google's cybersecurity certificate program! Throughout this course, I've acquired essential skills in: - Identifying the steps to contain, eradicate, and recover from an incident, ensuring swift and effective response in cybersecurity crises. - Analyzing packets to interpret network communications, crucial for detecting and understanding potential threats. - Understanding basic syntax and components of signatures and logs in Intrusion Detection Systems (IDS) and Network Intrusion Detection Systems (NIDS) tools, enabling proactive threat detection. - Performing queries in Security Information and Event Management (SIEM) tools to investigate an event, facilitating comprehensive incident analysis and response. Armed with these capabilities, I'm prepared to effectively detect and respond to cybersecurity threats. #Cybersecurity #GoogleCertificate #IncidentResponse #SIEM #IDS"

Just completed part 6 of 8 of the Google Cybersecurity Certificate What I have learnt: -Identify the steps to contain, eradicate, and recover from an incident - Analyze packets to interpret network communications -Understand basic syntax, components of signatures and logs in Intrusion Detection Systems (IDS) and Network Intrusion Detection Systems (NIDS) tools - Perform queries in Security Information and Event Management (SIEM) tools to investigate an event Skills gained: Security_Information_and_Event_Management(SIEM) tools Packet_Analyzer IntrusionDetectionSystems (IDS) #Cybersecurity #GoogleCybersecurity #NetworkSecurity #IncidentResponse #EthicalHacking #ProfessionalDevelopment