WPNinjas HeaderWPNinjas Header

Tag: Security Operation Center

Reports
Christoph Düggeli

Microsoft Sentinel Security Incident statistics with Workbooks

Apparently the contents from the screenshots taken is not easy to read and some zoom-in is required. Layer 8 issue. Table of Contents Intro You/your company has just signed up for a SIEM/SOAR solution where data from multiple, different external systems/platforms is aggregated, analyzed and (worst case) processed into Security

Read More »
SOC Monitor Wall Layout
Security
Christoph Düggeli

SOC Monitor wall – Build your Content (Part 3)

In this blog post, I share how the dedicated workbooks could look like regarding their content. Note: During the analysis of a specific high-severity security incident in a customer environment you might want to display specific content on the SOC wall screen. Link to other Parts: Planning the Setup Develop

Read More »
SOC Monitor Wall Layout
Security
Christoph Düggeli

SOC Monitor wall – Planning the Setup (Part 1)

The big plus working in a SOC is the possibility to be on-site with other Security Analysts rather than being separated in the home office. Working in a MSSP SOC means to keep an eye on multiple customer SIEM’s simultaneously in terms of security incidents and anomalies/availability of mandatory log

Read More »