I've put a lot of time into this and have interviewed a bunch of candidates who want to become SOC analysts. The TLDR is that many candidates are lacking the fundamentals. PLEASE DO NOT SKIP THIS. Follow this roadmap and do the trainings, take it one step at a time. Cybersecurity is difficult and not easy.
Sir wow I was previously working for sneeds feed and seed but when the old owner chuck sold the company, I lost my job. I was looking into pentesting roles but in my first interview they were asking if I knew "Kelly Linicks", so that is true, Networking with others will especially help in the future in case I get asked about her again. I never knew that analyzing socks would help me get my first gig but it makes sense now. Its all about doing whatever you can to get your opportunity handed to you., also it is great to know that I am not the only one trying to get an entry level role with no knowledge or experience. I think I might also make a youtube just like you tomorrow and start making cybersecurity "Content" thank you Sir.
As a SOC analyst I'd love to see the same roadmap video but for "threat hunting". All in all, fantastic content as always, really appreciate you sharing your knowledge with the community! 🙏
THIS is EXACTLY what's needed for those such as myelf that is painstakenly trying to break into/still break into the Cyber Security field. The blueprint outlined in this video is logical from beginning to end that cuts straight to the point, unlike how its conveyed to beginners/enthusiasts alike from bullshit cyber security influencers. Thank you for a concise blueprint on how to land a rewarding career as a SOC Analyst!
This video popped up on my timeline and I couldn’t be more thankful. It’s highly informative, I wish I came up 6months before now, nevertheless, I’m glad it it out now. I’ll try gaining knowledge on certain things I skipped. And I hope budding Soc analysts come across this video too, cos it’s highly impactful
Trying to do a career change and this is by far the most logical roadmap. It just makes sense to learn hardware then network and then dive into security. You need the fundamentals regardless. Thanks for the info!
Your channel is awesome bro. I’m sad I didn’t find it earlier lol. I just finished the video you made with the free alternatives to the cdsa. Since you mentioned both the cdsa and the ccd in this video which would you think is more beginner friendly coming off from finishing google cybersecurity certification? I was thinking BTL1 would be even more beginner friendly than going for either of those, but now I’m thinking about just doing the free resources instead.
All good, you found me now! haha - I would switch the mindset from beginner friendly to most bang for your buck to learn the skills required and the answer to that is the free resources BUT you will be required to perform a bunch of research on your end which will take time and if you can afford time, all the power to you! If not, then take either CDSA or CCD whichever is cheaper. BTL1 is enough to be slightly above a junior analyst but expensive compared to CDSA. If you want a more guided approach, you could look into enrolling into the CDSA modules and skip out on the cert itself. The modules should provide you those skills required. Hope that helps!
@@MyDFIR That helps. Thank you! I know there's still a waitlist for your course, but where would you put THAT course in the realm of all of these options?
@@Noc___ Great question! Since I am creating it, I'll put it above everything else haha - it will include similar content to CDSA & CCD with the addition of the cloud & SOAR so I would say slightly better than CDSA & might be on par with CCD but where I fall short is the in-browser experience. My course will not have that unfortunately, and instead will be a mix of using the cloud and hosting on the students machine. As a result, both CDSA & CCD are a better option for those that have limited resources on their machine and I will always recommend these two in that case. My course will also be all video so students will have a chance to follow along and those who enjoy how I present my SOC Automation Project series & SOC Mini-course will know what to expect. With that being said, nothing beats free so the free alternatives I list under my CDSA video will essentially help you get to 80%. If students cannot afford to enroll in paid training, I will highly encourage them to look at the free alternatives that I've listed. At the end of the day, it's all about the students learning experience so if I see that there is something missing, I will continue to add to the course & create videos here on YT to ensure they get the proper training & knowledge needed.
I agree with the @MyDFIR! Shifting your mindset from beginner-friendly to getting the most value for your investment is a great approach. Free resources are fantastic if you have the time to dive into self-research, but if you're looking for a more structured path, CCD is an excellent choice. CCD offers in-depth content with realistic, hands-on labs that closely mimic real-world scenarios. The high-quality video materials make the learning process engaging and effective. While CDSA is more budget-friendly, CCD's comprehensive content and practical skills make it worth the investment. Hope this helps, and best of luck on your learning journey!
Definitely a game changer! Very advantageous advice and steps! Very beneficial information and really well-done! Definitely going to check out the resources you mentioned as well such as resume templates etc. thank you so much for what you do for the community and overall a very solid video for the purpose!
I am definitely starting to realise you have to have a solid understanding of networking to get into cybersecurity. I’m doing my Comptia a+ at the moment.
Great info I’ve already completed steps 1-4 once I finish getting the SOC analyst certification I’ll focus on creating a portfolio. My laptop is like 6 years old and I’ll have to buy a new one before I set up VMs but your videos are great. You are able to explain clearly, and simply for beginners to understand. Really appreciate the info!
awesome, im taking this similar path but for network engineering. im studying A+ at the moment. will be studying for network+ once i get certified for A+, then ill be going for CCNA and CCNP.
Thank you legend, I’m working as a software engineer working with Linux, Bash, python scripts. And I’ve been thinking to switch career to SOC analysis. This is what I’ve been looking for! Great video! Keep up the good work!
I’m trying to switch from web development and hopefully I can specialize in web app security maybe you can follow a similar route or think about developing a simple cyber security tool like a SOC dashboard or something. Anyways good luck
Hey, I just started watching your vids 3 days ago. I'm glad i found your channel. Its very helpful. I'd like to thank you for creating such a amazing content. Keep up with the good work 👍🏻✌🏻.
Insane value, getting your road map book. Actually I was happy to see you only had 15k followers because it means ill have an advantage to all of the people that come a long later. ahhaah. sort of. Dude awesome, getting your book now.
Thank you, it was very interesting. Now I know what to do for the next 5 years to become (maybe) a junior SOC Analyst. You forgot to include a new trend such as AI. Now all companies will integrate it into the work.
Thanks for watching! This will put you in the right path to becoming a SOC Analyst, I have no doubt in that. As for AI...ehhh is what I would say to that haha. Sure AI is here and companies want to jump on that new shiny object but realistically speaking many organizations are hesitant to integrate that because of privacy issues. (AI needs to learn somehow but using what data?) - Nonetheless, AI is here to stay but at the end of the day, it'll help us analysts focus on what matters most and that is investigations!
Dare I say this roadmap will help you become a security engineer as well heheh Only thing that is missing for a security engineer is coding IMO - learn to understand how to read basic code and edit them. Everything else in the roadmap should teach you the skills required to become a security engineer.
@@MyDFIR gotcha! I’m in school for computer networking and cybersecurity. In really want to get into SOC. But I’m starting from ground zero. Any suggestions??
Hi DFIR, I am a second year bachelors student and just recently completed the Google CyS cert. Would you recommend me to go for Security+ now or later? (personally my plan was to do this during summer) but I heard from people that it expires after 3 years and you should only do it close to graduation or when job finding...I personally thought that if I do it now it'll help me land a good internship in my 3rd year summer obviously along with good projects in my resume, and even after graduation I would have 1 year before it expires.
It’ll depend on your workload, if you feel comfortable taking some time out of your school to study for security+, i say go for it. Otherwise, focus on your education first and perhaps dabble in some hands on labs and/or projects instead. Hope that helps!
You listed the labs. I know you did the Wazuh lab, but are you planning on doing the other labs that you mentioned or do you have another good resource to complete the other labs? I'm at the point that I need to build a portfolio.
👀 I may have some future planned videos haha - In the meantime, I would recommend you research how to perform said labs/projects. I listed the objectives and that is something you can try and accomplish. Hope that helps!
I've just transitioned from two years in cyber GRC to a SecOps Lead Analyst role in a SOC and I'm encoutering challenges in investigating IDS/IPS and WAF (ModSec) firings, monitoring our m365 environment with Microsoft Defenter, and building & running Splunk searches for network monitoring, detection and response. To make things more interesting, I have no hands-on experience in digital forensics (pcap analysis). I am looking for an ideal course that will help me expand on my technical skills, and am torn between SEC504 (SANS) and the Microsoft Cybersecurity Analyst Professional Certificate. Which one would you recommend me?
Great question. For SANS is this course something your employer would foot the bill? If so, I would take it. Otherwise, I would look for something else such as my course to help you build that investigative methodology and analysis then I would couple that with Microsoft SC200 to learn more about Azure and Defender.
@@MyDFIR Yes, they will cover the cost. Given the significant price difference, I considered using the SANS course budget to take several short courses instead. However, I feel that SEC504 might check most of the boxes and be a quicker path overall. Thanks for the input, SEC504 it is then :)
Hi, I am planning on buying the roadmap written on a .pdf on gumroad but what is the difference between this video and the .pdf thanks! and any alternatives to CCD or HTB certification they are expensive for me as a student
Great question! The PDF is essentially the same as this video however, I have included links to everything I talk about within the PDF. It is also a different delivery method (reading vs watching) and some folks prefer the former. As for alternatives, not really when it comes to certifications but you can go for HTB and not take the certificate to save on some money and earn those skills. You can also go the free route via researching on Google.
Hey i want to learn tools likes Wireshark,splunk,snort and more but thier are only limited resources and doesn't contain every thing how can i learn them please help
Anything specific you are looking for? Nothing better than its documentation as that shows everything you need to know. I've also created videos on Wireshark & Snort and how to investigate PCAPs if that is what you are looking for.
I have worked in SOC for 3 years now. My business shut down the SOC to do only Consulting, Purple Team and Red Team. I currently have my A+, Net+, Sec+ and plan to get some Linux certs. I also have training in Crowdstrike, Carbon Black, Palo Alto Cortex XDR, Alien Vault, Securonix and we started to look into Palo Alto's SOAR program before they shut us down. I am having no luck with getting any call backs. I also have worked in IT for 10+ years as well, So it's not like I just jumped on the bandwagon and have no IT background. Should I look into some AWS and Asure certifications as well? I am getting frustrated.
Great question and I am sorry to hear that. Was this an in house SOC or MSSP? Please correct me if I am wrong but during your time in the SOC, I assume you weren’t solely doing alert triage but also building alerts, threat hunts, tuning & investigations? Reason I say this is because 3 years in the SOC is quite a long time and you can start to think about specializing. Cloud certifications won’t hurt and learning something new is always exciting. Do keep in mind that the job market is terrible right now and unfortunately something you cannot control. I know you have what it takes and are a smart individual. I hope that helps ❤️
Was MSSP so we dug in only as far as the customer wanted us to. Honestly, I spent a lot of time on the phone having customers be like why are you waking me up at 3am. @@MyDFIR
I want to get into a SOC analyst or threat analyst role (with no prior experience and a Bachelor's in CS) and so far I've done the SOC Level 1 pathway on TryHackMe. I'm planning to spend the next few months getting the Security +, SC 200 and Blue Team Level 1 while practicing on Range Forces and doing the SOC Level 2 TryHackMe pathway. Does making writeups of these rooms count as the documenting you mentioned in the video? In addition to this and setting up a home lab what else do you suggest I do?
Great question, yes simply writing will count as documentation or atleast it should build your writing skills / get you into a habit of putting things down. Aside from home labs, look into SOC related projects to build up those troubleshooting & research skills.
It provides decent knowledge and puts you slightly above a junior analyst IMO whereas CDSA & CCD appears to offer “advanced” topics. BTL1 costs more than CDSA as well.
Isc2 CC? I would recommend taking google course afterwards. It will reinforce your knowledge and should provide you with additional information along with a security+ voucher afterwards.
Linux becomes more prevalent when you start to do engineering side of things. Most companies use Windows hence why there isn’t any mention of Linux. But of course, knowing Linux would be great.
Awesome, let me know if you have any questions along the way. I want you to succeed and by following this I am sure you will get there. (yes it will cost money unfortunately for these trainings but you will be INVESTING IN YOURSELF.)
I've put a lot of time into this and have interviewed a bunch of candidates who want to become SOC analysts. The TLDR is that many candidates are lacking the fundamentals. PLEASE DO NOT SKIP THIS.
Follow this roadmap and do the trainings, take it one step at a time. Cybersecurity is difficult and not easy.
Sir wow I was previously working for sneeds feed and seed but when the old owner chuck sold the company, I lost my job. I was looking into pentesting roles but in my first interview they were asking if I knew "Kelly Linicks", so that is true, Networking with others will especially help in the future in case I get asked about her again. I never knew that analyzing socks would help me get my first gig but it makes sense now. Its all about doing whatever you can to get your opportunity handed to you., also it is great to know that I am not the only one trying to get an entry level role with no knowledge or experience. I think I might also make a youtube just like you tomorrow and start making cybersecurity "Content" thank you Sir.
My projects got me my first job even though I had an unrelated degree
Crying here at helpdesk with bunch of projects and certificates 😢
Part of the country matters. Which certificates?
CompTIA A, Net, Security + and az900. I am in CA
@@Linux333 CompTIA A, Network, Security+ and AZ900. I am here at CA with AA degree in irreverent major lol
Hi, may I know what projects you did? Thanks!
As a SOC analyst I'd love to see the same roadmap video but for "threat hunting".
All in all, fantastic content as always, really appreciate you sharing your knowledge with the community! 🙏
Thanks! Thats a great suggestion ❤️
THIS is EXACTLY what's needed for those such as myelf that is painstakenly trying to break into/still break into the Cyber Security field. The blueprint outlined in this video is logical from beginning to end that cuts straight to the point, unlike how its conveyed to beginners/enthusiasts alike from bullshit cyber security influencers. Thank you for a concise blueprint on how to land a rewarding career as a SOC Analyst!
Thanks! Happy it helps ❤️
have you finally been able to break into cyber security field?
This video popped up on my timeline and I couldn’t be more thankful. It’s highly informative, I wish I came up 6months before now, nevertheless, I’m glad it it out now. I’ll try gaining knowledge on certain things I skipped. And I hope budding Soc analysts come across this video too, cos it’s highly impactful
Awesome! Thanks for watching and I do hope those wanting to become SOC Analysts find this video 😊
Best video of this type I've found. No hype, no fluff.
Thank you, I appreciate that ❤️
Trying to do a career change and this is by far the most logical roadmap. It just makes sense to learn hardware then network and then dive into security. You need the fundamentals regardless. Thanks for the info!
Thanks and absolutely agree "You need the fundamentals regardless." No shortcuts here! Let me know if you have any questions 💪
Salamat. Mabuhay ka! Watching from 🇵🇭
Definitely the best advisor in the field
Thank you ❤️
God bless you and continued growth for your channel.
Thank you so much!
Your channel is awesome bro. I’m sad I didn’t find it earlier lol.
I just finished the video you made with the free alternatives to the cdsa. Since you mentioned both the cdsa and the ccd in this video which would you think is more beginner friendly coming off from finishing google cybersecurity certification? I was thinking BTL1 would be even more beginner friendly than going for either of those, but now I’m thinking about just doing the free resources instead.
All good, you found me now! haha - I would switch the mindset from beginner friendly to most bang for your buck to learn the skills required and the answer to that is the free resources BUT you will be required to perform a bunch of research on your end which will take time and if you can afford time, all the power to you! If not, then take either CDSA or CCD whichever is cheaper. BTL1 is enough to be slightly above a junior analyst but expensive compared to CDSA. If you want a more guided approach, you could look into enrolling into the CDSA modules and skip out on the cert itself. The modules should provide you those skills required.
Hope that helps!
@@MyDFIR That helps. Thank you! I know there's still a waitlist for your course, but where would you put THAT course in the realm of all of these options?
@@Noc___ Great question! Since I am creating it, I'll put it above everything else haha - it will include similar content to CDSA & CCD with the addition of the cloud & SOAR so I would say slightly better than CDSA & might be on par with CCD but where I fall short is the in-browser experience. My course will not have that unfortunately, and instead will be a mix of using the cloud and hosting on the students machine. As a result, both CDSA & CCD are a better option for those that have limited resources on their machine and I will always recommend these two in that case.
My course will also be all video so students will have a chance to follow along and those who enjoy how I present my SOC Automation Project series & SOC Mini-course will know what to expect. With that being said, nothing beats free so the free alternatives I list under my CDSA video will essentially help you get to 80%.
If students cannot afford to enroll in paid training, I will highly encourage them to look at the free alternatives that I've listed.
At the end of the day, it's all about the students learning experience so if I see that there is something missing, I will continue to add to the course & create videos here on YT to ensure they get the proper training & knowledge needed.
I agree with the @MyDFIR! Shifting your mindset from beginner-friendly to getting the most value for your investment is a great approach. Free resources are fantastic if you have the time to dive into self-research, but if you're looking for a more structured path, CCD is an excellent choice.
CCD offers in-depth content with realistic, hands-on labs that closely mimic real-world scenarios. The high-quality video materials make the learning process engaging and effective. While CDSA is more budget-friendly, CCD's comprehensive content and practical skills make it worth the investment.
Hope this helps, and best of luck on your learning journey!
I deeply thank you for your hard work on making these videos and supporting all of us
Thank you for watching ❤️ I am happy this helps
Definitely a game changer! Very advantageous advice and steps! Very beneficial information and really well-done! Definitely going to check out the resources you mentioned as well such as resume templates etc. thank you so much for what you do for the community and overall a very solid video for the purpose!
Happy to provide everyone a guided path to become a SOC analyst ❤️ thanks for watching!
Thank you for sharing. I feel so small while listening to this.
Thanks for watching! We all start somewhere and I am here to make sure you aren't alone!
I am definitely starting to realise you have to have a solid understanding of networking to get into cybersecurity. I’m doing my Comptia a+ at the moment.
Yup, networking is something we MUST know. Great that you realized that quickly! Continue to level up and you’ll be in a good spot 💪
So happy I just found you great content
Thank you!!
I'm already an L2 Network Security Engineer, but this made so much sense to me, I'll buy you a coffee 🙂
Thank you!!
Great info I’ve already completed steps 1-4 once I finish getting the SOC analyst certification I’ll focus on creating a portfolio. My laptop is like 6 years old and I’ll have to buy a new one before I set up VMs but your videos are great. You are able to explain clearly, and simply for beginners to understand. Really appreciate the info!
Awesome work! Time to put in those reps and you got this 🙌
Bro, how much time did it take you to do it? Also if you don't mind please let me know how much time you spent each day.. Thanks
Thanks for your time to provide that many details information. You are awesome. Happy New Year 🎉
So far best blueprint starting this year.
Thanks! Hope people follow it if they want to become a SOC analyst!
awesome, im taking this similar path but for network engineering. im studying A+ at the moment. will be studying for network+ once i get certified for A+, then ill be going for CCNA and CCNP.
Love it! Great job 💪
Thank you legend, I’m working as a software engineer working with Linux, Bash, python scripts.
And I’ve been thinking to switch career to SOC analysis.
This is what I’ve been looking for!
Great video! Keep up the good work!
Glad I could help! Let me know if you have any questions.
I’m trying to switch from web development and hopefully I can specialize in web app security maybe you can follow a similar route or think about developing a simple cyber security tool like a SOC dashboard or something. Anyways good luck
Hey, I just started watching your vids 3 days ago. I'm glad i found your channel. Its very helpful. I'd like to thank you for creating such a amazing content. Keep up with the good work 👍🏻✌🏻.
Signing up for mentorship and joining discord is done. Hopefully I'm gonna get your more help in my cyber security journey.😅
Thanks for watching! Happy to know it was helpful ❤
Insane value, getting your road map book. Actually I was happy to see you only had 15k followers because it means ill have an advantage to all of the people that come a long later. ahhaah. sort of. Dude awesome, getting your book now.
Thank you! If you have any questions, feel free to ask!
Thank you very much for this, i have actually done my A+ , network+ and security+ now i am gonna follow the remainding of your steps
Awesome! Let me know if you have any questions ❤️
@@MyDFIR tried to get the mentorship on your website but never got email how long does it usually take ?
Apologies, I am working on both the backfill of the emails and my course - I’ll try and answer all of them by either tonight or tomorrow.
@@MyDFIR thank you very much appreciate it
Would be nice to make video tutorials on all the homelab projects mentioned in the video. ❤
I do have SOME on my channel that I’ve created. Thinking of doing some more.
Gracias por el contenido
No hay mucho que se refieran a Blue Team, hardering de equipo etc ...
Gracias.
@MyDFIR Thanks so much for all the great content, you're awesome and you are greatly appreciated!!
I appreciate that! Thanks for watching ❤️
what kind of projects did you do ? do you mind sharing?
Great video thank you , Btw i love the Shenron figure back there 🐉
Haha thank you!!
Just passed security plus exam and now it’s time to do these projects 🎉
Nice!!! Congratulations 🎉
Thank you, it was very interesting. Now I know what to do for the next 5 years to become (maybe) a junior SOC Analyst. You forgot to include a new trend such as AI. Now all companies will integrate it into the work.
Thanks for watching! This will put you in the right path to becoming a SOC Analyst, I have no doubt in that. As for AI...ehhh is what I would say to that haha. Sure AI is here and companies want to jump on that new shiny object but realistically speaking many organizations are hesitant to integrate that because of privacy issues. (AI needs to learn somehow but using what data?) - Nonetheless, AI is here to stay but at the end of the day, it'll help us analysts focus on what matters most and that is investigations!
So motivational thank for you dedication and enthusiasm to changing lives
My pleasure!! I want you all to be successful ❤️
please start a playlist on complete soc course... would love to see
I have various playlists that Ive created to help you along your journey! Feel free to check them out.
This was pretty simple and informative i like it 🔥
Glad to hear!
you are a good person
❤️❤️ appreciate it
Yes i work in the financial industry and I noticed everything is moving to cloud, not to mention they're always hiring for cloud cyber positions
Yup, however there will always be some companies who will not move to the cloud but regardless of that, folks should learn the cloud to stay relevant!
Thank you for these videos
My pleasure!
Golden Information!
Thanks!
Do security engineers next please
Dare I say this roadmap will help you become a security engineer as well heheh
Only thing that is missing for a security engineer is coding IMO - learn to understand how to read basic code and edit them. Everything else in the roadmap should teach you the skills required to become a security engineer.
@@MyDFIR thanks bro
Thanks a lot! I got the road map and resume template
Awesome! Thank you for your support ❤️please let me know if you have any questions!
@@MyDFIR gotcha! I’m in school for computer networking and cybersecurity. In really want to get into SOC. But I’m starting from ground zero. Any suggestions??
Take a lot of notes, networking is important in this field and follow the roadmap for additional learnings, specifically the hands on labs
@@MyDFIR got you
@@MyDFIR followed you on IG also!
Thanks, you got Straight to it.
Thanks for watching! Time is a valuable resource, my goal is to make sure I don’t waste your time ❤️
Thank you for this information
My pleasure! Thanks for watching ❤️
Thank you as always!
My pleasure!
Great stuff, Steve.
Thank you ❤️
Sick nugz. Muchos gracias
thanks for watching!
For beginner in this field of soc analyst what should we take second step?
The roadmap will provide you with what to do next!
Hi DFIR, I am a second year bachelors student and just recently completed the Google CyS cert. Would you recommend me to go for Security+ now or later? (personally my plan was to do this during summer) but I heard from people that it expires after 3 years and you should only do it close to graduation or when job finding...I personally thought that if I do it now it'll help me land a good internship in my 3rd year summer obviously along with good projects in my resume, and even after graduation I would have 1 year before it expires.
It’ll depend on your workload, if you feel comfortable taking some time out of your school to study for security+, i say go for it. Otherwise, focus on your education first and perhaps dabble in some hands on labs and/or projects instead.
Hope that helps!
You listed the labs. I know you did the Wazuh lab, but are you planning on doing the other labs that you mentioned or do you have another good resource to complete the other labs? I'm at the point that I need to build a portfolio.
👀 I may have some future planned videos haha - In the meantime, I would recommend you research how to perform said labs/projects. I listed the objectives and that is something you can try and accomplish.
Hope that helps!
I've just transitioned from two years in cyber GRC to a SecOps Lead Analyst role in a SOC and I'm encoutering challenges in investigating IDS/IPS and WAF (ModSec) firings, monitoring our m365 environment with Microsoft Defenter, and building & running Splunk searches for network monitoring, detection and response. To make things more interesting, I have no hands-on experience in digital forensics (pcap analysis). I am looking for an ideal course that will help me expand on my technical skills, and am torn between SEC504 (SANS) and the Microsoft Cybersecurity Analyst Professional Certificate. Which one would you recommend me?
Great question. For SANS is this course something your employer would foot the bill? If so, I would take it. Otherwise, I would look for something else such as my course to help you build that investigative methodology and analysis then I would couple that with Microsoft SC200 to learn more about Azure and Defender.
@@MyDFIR Yes, they will cover the cost. Given the significant price difference, I considered using the SANS course budget to take several short courses instead. However, I feel that SEC504 might check most of the boxes and be a quicker path overall. Thanks for the input, SEC504 it is then :)
Awesome! You’ll have an amazing time with SANS.
Well and easily explained
Thanks for watching!
Hi,
I am planning on buying the roadmap written on a .pdf on gumroad but what is the difference between this video and the .pdf thanks! and any alternatives to CCD or HTB certification they are expensive for me as a student
Great question! The PDF is essentially the same as this video however, I have included links to everything I talk about within the PDF. It is also a different delivery method (reading vs watching) and some folks prefer the former.
As for alternatives, not really when it comes to certifications but you can go for HTB and not take the certificate to save on some money and earn those skills. You can also go the free route via researching on Google.
Hey i want to learn tools likes Wireshark,splunk,snort and more but thier are only limited resources and doesn't contain every thing how can i learn them please help
Anything specific you are looking for? Nothing better than its documentation as that shows everything you need to know. I've also created videos on Wireshark & Snort and how to investigate PCAPs if that is what you are looking for.
Do you prefer Comptia Security+ Study Guide Exam by Mike Chapple and David Seidl?
Yup absolutely, anything that touches on Security+ should be decent. For that particular book, I would look for 701 (latest version)
Interesting narrative
I have worked in SOC for 3 years now. My business shut down the SOC to do only Consulting, Purple Team and Red Team. I currently have my A+, Net+, Sec+ and plan to get some Linux certs. I also have training in Crowdstrike, Carbon Black, Palo Alto Cortex XDR, Alien Vault, Securonix and we started to look into Palo Alto's SOAR program before they shut us down. I am having no luck with getting any call backs. I also have worked in IT for 10+ years as well, So it's not like I just jumped on the bandwagon and have no IT background. Should I look into some AWS and Asure certifications as well? I am getting frustrated.
Great question and I am sorry to hear that. Was this an in house SOC or MSSP? Please correct me if I am wrong but during your time in the SOC, I assume you weren’t solely doing alert triage but also building alerts, threat hunts, tuning & investigations? Reason I say this is because 3 years in the SOC is quite a long time and you can start to think about specializing. Cloud certifications won’t hurt and learning something new is always exciting.
Do keep in mind that the job market is terrible right now and unfortunately something you cannot control. I know you have what it takes and are a smart individual.
I hope that helps ❤️
Was MSSP so we dug in only as far as the customer wanted us to. Honestly, I spent a lot of time on the phone having customers be like why are you waking me up at 3am. @@MyDFIR
@@MyDFIR really appreciate the content amd the reply.
I only obtained Associate’s Degree. Is that enough for me to land a job with skills?
I would try for a certificate as well to increase your chances and by gaining practical experience and doing projects while networking with others 👍
This is very informative. Do you know any platform one can learn and practice as a soc analyst after passing the ccna and the security + exams?
LetsDefend comes closest when it comes to "soc alerts" but the other resources listed in this roadmap helps build up the skill.
I want to get into a SOC analyst or threat analyst role (with no prior experience and a Bachelor's in CS) and so far I've done the SOC Level 1 pathway on TryHackMe. I'm planning to spend the next few months getting the Security +, SC 200 and Blue Team Level 1 while practicing on Range Forces and doing the SOC Level 2 TryHackMe pathway. Does making writeups of these rooms count as the documenting you mentioned in the video? In addition to this and setting up a home lab what else do you suggest I do?
Great question, yes simply writing will count as documentation or atleast it should build your writing skills / get you into a habit of putting things down.
Aside from home labs, look into SOC related projects to build up those troubleshooting & research skills.
Thanks for the great content, Where can i get the SY0-701 book?
You could take a look at amazon there are some books there for 701
Awesome video
Thanks!
Hey what do you think about Blue Team L1 instead ?
Its alright - it is a bit pricer than CDSA. I personally would opt for CDSA as it does appear to have more “advanced” modules
@@MyDFIR yeah I’m actually starting it tomorrow morning
Thanks
You da man. Thanks..
Glad to help
Hello, what do you think of the Btl1 cert? if youve heard of it😮
There are a lot of mixed reviews but at the end of the day it, the material is quite decent for a junior SOC analyst.
I'm curious you didn't mention security+ , why is that ?
I did, it is @2:13 - Obtain Security+ and move onto obtaining SOC specific certifications
Yep, thank you so much , great content.🙏
What's your opinion on the Blue Team Level 1?
It provides decent knowledge and puts you slightly above a junior analyst IMO whereas CDSA & CCD appears to offer “advanced” topics. BTL1 costs more than CDSA as well.
If I have ISC2 do you still recommend to take Google cybersecurity fundamentals?
Isc2 CC? I would recommend taking google course afterwards. It will reinforce your knowledge and should provide you with additional information along with a security+ voucher afterwards.
Can a average motivated student can do all this in 1 year from scratch with prior knowledge of only c++ and dsa
I would say a year is quite tight if I am being honest. I would aim for 1.5-2 to be in a good state.
@@MyDFIR thank you brother
very informative sir
Thanks!
Cybersecurity engineer or Cybersecurity analyst which one is best....
Heheh depends on you! Engineer is typically a more “senior” role, at least in my eyes.
HOW TO BE A CYBERSEC ENGINEER?
I had a doubt u didn't mention anything about linux 😅😅😅
Linux becomes more prevalent when you start to do engineering side of things. Most companies use Windows hence why there isn’t any mention of Linux. But of course, knowing Linux would be great.
I will join this
Awesome, let me know if you have any questions along the way. I want you to succeed and by following this I am sure you will get there. (yes it will cost money unfortunately for these trainings but you will be INVESTING IN YOURSELF.)
I want to enroll immediately
sould i go for masters in cyber security in europe
That is up to you!
How many years will it take to complete all?
Realistically 1.5-2 years
Should I get CySA?
Honestly, if going the SOC route I would focus on the certs listed in the video. However if you want to take CySa, go for it!
what about hacking skils? can we become SOC anaylst with zero knowlagede of red team operations?
Yes. You don’t need hacking skills but its nice to be aware of what they can do and the purpose of it.
Legend
How much will the soc course cost?
Great question still deciding on the value to price but will talk about it more once the course had gone through its testing phase
Can an indian do thesew certification
Sure. Im from dominican republic and im planning to do it
I do not see why not
Great stuff 👍
Perfect video 🔥
Thank you ❤️