Crowley_SOC_Summit.pdf
Crowley Soc Summit
Presentation on SOC tactics and strategies.
This page contains AI generated content. Errors or omissions may be present. Use human level critical thinking.
-
Q: What is the central theme of the Crowley SOC Summit presentation?A: The evolution of SOCs and the need to adapt to mobile and cloud threats.
-
Q: What is the 'OODA Loop' applied to SOCs?A: Observe, Orient, Decide, Act - a cycle for rapid incident response.
-
Q: What is the 'SOC Triad' defined in this presentation?A: Command Center, Network Security Monitoring, and Threat Intelligence.
-
Q: What is the 'Analyst Burnout' factor?A: The high turnover rate caused by repetitive work and alert fatigue.
-
Q: What is the recommended 'Shift Length' for SOC analysts?A: Ideally 8-10 hours to maintain alertness, avoiding 12-hour shifts where possible.
-
Q: How should 'Metrics' be used in a SOC?A: To drive improvement and justify budget, not just to report activity counts.
-
Q: What is the 'Fusion Center' model?A: Integrating cyber threat intelligence with physical security and fraud detection.
-
Q: What is the role of 'Active Defense'?A: Proactively engaging adversaries to disrupt their attacks (e.g., honeypots, annoyance).
-
Q: What is the 'Skills Gap' solution proposed?A: Internal training and mentorship programs rather than relying solely on hiring 'unicorns'.
-
Q: What is the importance of 'Business Alignment'?A: Ensuring SOC activities directly support the organization's mission and risk appetite.
Ask a question
Have a doubt or need clarification?
I’m here to help. Share your question, and I’ll get back to you with the guidance you need regarding the course.
Thank you!
I have received your message and I shall get back to you shortly.